Vulnerability Description
Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCtz72967.
CVSS Score
9.3
HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Webex Recording Format Player | 27.11.26 |
Related Weaknesses (CWE)
References
- http://osvdb.org/86142
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
- http://www.securityfocus.com/bid/55866
- http://www.securitytracker.com/id?1027639
- http://osvdb.org/86142
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20Vendor Advisory
- http://www.securityfocus.com/bid/55866
- http://www.securitytracker.com/id?1027639
FAQ
What is CVE-2012-3937?
CVE-2012-3937 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID CSCtz...
How severe is CVE-2012-3937?
CVE-2012-3937 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3937?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Webex Recording Format Player.