CVE-2016-1415

MEDIUM

Cisco WebEx Meetings Player T29.10 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-1415. PoCs published by COSIG.

AI-analyzed exploit summary The document describes a vulnerability in Cisco Webex Player (CVE-2016-1415) involving out-of-bound memory corruption during ARF file parsing, potentially leading to arbitrary code execution. It includes technical details and references to PoC files but does not contain actual exploit code.

Description

Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted file, aka Bug ID CSCuz80455.

Exploits (1)

exploitdb WRITEUP VERIFIED
by COSIG · textdoswindows
https://www.exploit-db.com/exploits/40509

The document describes a vulnerability in Cisco Webex Player (CVE-2016-1415) involving out-of-bound memory corruption during ARF file parsing, potentially leading to arbitrary code execution. It includes technical details and references to PoC files but does not contain actual exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Cisco Webex Meeting Player version T29.10
No auth needed
Prerequisites: Malicious ARF file
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1036713
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/92711
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/40509/

Scores

CVSS v3 5.5
EPSS 0.0561
EPSS Percentile 91.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE
CWE-399
Status published
Products (1)
cisco/webex_wrf_player_t29 sp10_base
Published Sep 03, 2016
Tracked Since Feb 18, 2026