CVE-2016-1464

HIGH

Cisco WebEx Meetings Player T29.10 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-1464. PoCs published by COSIG.

AI-analyzed exploit summary The document describes a use-after-free vulnerability in Cisco Webex Player T29.10, triggered by parsing an invalid JPG within a WRF file, potentially leading to arbitrary code execution. It includes a timeline, technical details, and links to PoC files but does not contain actual exploit code.

Description

Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to execute arbitrary code via a crafted file, aka Bug ID CSCva09375.

Exploits (1)

exploitdb WRITEUP VERIFIED
by COSIG · textdoswindows
https://www.exploit-db.com/exploits/40508

The document describes a use-after-free vulnerability in Cisco Webex Player T29.10, triggered by parsing an invalid JPG within a WRF file, potentially leading to arbitrary code execution. It includes a timeline, technical details, and links to PoC files but does not contain actual exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Cisco Webex Meeting Player version T29.10
No auth needed
Prerequisites: A maliciously crafted WRF file with an invalid JPG
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1036712
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/92708
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/40508/

Scores

CVSS v3 7.8
EPSS 0.0998
EPSS Percentile 95.0%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (1)
cisco/webex_wrf_player_t29 sp10_base
Published Sep 03, 2016
Tracked Since Feb 18, 2026