Description
Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .arf file, aka Bug IDs CSCui72223, CSCul01163, and CSCul01166.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140507-webex
Scores
EPSS
0.0379
EPSS Percentile
88.7%
Details
CWE
CWE-119
Status
published
Products (6)
cisco/webex_advanced_recording_format_player
t27ld
cisco/webex_advanced_recording_format_player
t28
cisco/webex_advanced_recording_format_player
t29
cisco/webex_recording_format_player
t27ld
cisco/webex_recording_format_player
t28
cisco/webex_recording_format_player
t29
Published
May 08, 2014
Tracked Since
Feb 18, 2026