Vulnerability Description
Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted WRF file, aka Bug ID CSCua61331.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Webex Recording Format Player | 27.11.26 |
Related Weaknesses (CWE)
References
- http://osvdb.org/86138
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20PatchVendor Advisory
- http://www.securityfocus.com/bid/55866
- http://www.securitytracker.com/id?1027639
- http://osvdb.org/86138
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20PatchVendor Advisory
- http://www.securityfocus.com/bid/55866
- http://www.securitytracker.com/id?1027639
FAQ
What is CVE-2012-3939?
CVE-2012-3939 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory cor...
How severe is CVE-2012-3939?
CVE-2012-3939 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3939?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Webex Recording Format Player.