Description
Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .arf file that triggers improper LZW decompression, aka Bug ID CSCuj87565.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140507-webex
Scores
EPSS
0.0312
EPSS Percentile
86.3%
Details
CWE
CWE-119
Status
published
Products (6)
cisco/webex_advanced_recording_format_player
t27ld
cisco/webex_advanced_recording_format_player
t28
cisco/webex_advanced_recording_format_player
t29
cisco/webex_recording_format_player
t27ld
cisco/webex_recording_format_player
t28
cisco/webex_recording_format_player
t29
Published
May 08, 2014
Tracked Since
Feb 18, 2026