Cisco.WebEx.Player.WRF.File.Memory.Corruption
Description
This indicates the detection of an attack attempt against a Memory Corruption vulnerability in Cisco WebEx Player.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted wrf file. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.
Affected Products
Cisco Webex Meetings Suite (WBS31) - Webex Network Recording Player and Webex Player versions prior to WBS31.23
Cisco Webex Meetings Suite (WBS32) - Webex Network Recording Player and Webex Player versions prior to WBS32.15
Cisco Webex Meetings Suite (WBS33) - Webex Network Recording Player and Webex Player versions prior to WBS33.2
Cisco Webex Meetings Online - Webex Network Recording Player and WebEx Player versions prior to 1.3.35
Cisco Webex Meetings Server - Webex Network Recording Player versions prior to 3.0MR1
Impact
Denial of Service: Remote attackers can crash vulnerable application.
Recommended Actions
Apply the latest patch from the vendor:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-dos
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-06-06 | 14.627 | Severity:high:medium |