CVE-2010-3042

Cisco WebEx Recording Format Player - Buffer Overflow via Crafted WRF or ARF File

Title source: llm
STIX 2.1

Description

Multiple buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted (1) .wrf or (2) .arf file, a different vulnerability than CVE-2010-3041, CVE-2010-3043, and CVE-2010-3044.

References (5)

Core 5
Core References
Patch, Vendor Advisory vendor-advisory x_refsource_cisco
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6913f.shtml
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/46075
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1025016
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/65073

Scores

EPSS 0.0509
EPSS Percentile 91.4%

Details

CWE
CWE-119
Status published
Products (10)
cisco/webex_advanced_recording_format_player 26.49
cisco/webex_advanced_recording_format_player 27.10
cisco/webex_advanced_recording_format_player 27.11.0.3328
cisco/webex_advanced_recording_format_player 27.12
cisco/webex_advanced_recording_format_player 27.13
cisco/webex_recording_format_player 26.49
cisco/webex_recording_format_player 27.10
cisco/webex_recording_format_player 27.11.0.3328
cisco/webex_recording_format_player 27.12
cisco/webex_recording_format_player 27.13
Published Feb 02, 2011
Tracked Since Feb 18, 2026