Description
Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .wrf or (2) .arf file, related to atas32.dll, a different vulnerability than CVE-2010-3042, CVE-2010-3043, and CVE-2010-3044.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/65072
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/46075
Vendor Advisory vendor-advisory
x_refsource_cisco
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6913f.shtml
Vendor Advisory x_refsource_misc
http://www.fortiguard.com/advisory/FGA-2011-03.html
Various Sources x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=22016
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025016
Scores
EPSS
0.0554
EPSS Percentile
91.9%
Details
CWE
CWE-119
Status
published
Products (10)
cisco/webex_advanced_recording_format_player
26.49
cisco/webex_advanced_recording_format_player
27.10
cisco/webex_advanced_recording_format_player
27.11.0.3328
cisco/webex_advanced_recording_format_player
27.12
cisco/webex_advanced_recording_format_player
27.13
cisco/webex_recording_format_player
26.49
cisco/webex_recording_format_player
27.10
cisco/webex_recording_format_player
27.11.0.3328
cisco/webex_recording_format_player
27.12
cisco/webex_recording_format_player
27.13
Published
Feb 02, 2011
Tracked Since
Feb 18, 2026