Vulnerability Description
Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted data, aka Bug IDs CSCup62463 and CSCup58467.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Webex Meeting Center | - |
| Cisco | Webex Meetings Server | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3311Vendor Advisory
- http://www.securityfocus.com/bid/68502
- http://www.securitytracker.com/id/1030550
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94432
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3311Vendor Advisory
- http://www.securityfocus.com/bid/68502
- http://www.securitytracker.com/id/1030550
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94432
FAQ
What is CVE-2014-3311?
CVE-2014-3311 is a vulnerability with a CVSS score of 5.1 (MEDIUM). Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted da...
How severe is CVE-2014-3311?
CVE-2014-3311 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3311?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Webex Meeting Center, Cisco Webex Meetings Server.