Vulnslist

find the latest Cisco vulnerabilities

Multiple Vulnerabilities in the Cisco WebEx Recording Format Player

cisco-sa-20121010-webex · Critical · Published · Updated

The Cisco WebEx Recording Format (WRF) player contains six buffer overflow vulnerabilities. In some cases, exploitation of the vulnerabilities could allow a remote attacker to execute arbitrary code on the system with the privileges of a targeted user.  The Cisco WebEx WRF Player is an application used to play back WRF WebEx meeting recordings that have been recorded on a WebEx meeting site or on the computer of an online meeting attendee. The Cisco WebEx WRF Player can be automatically installed when the user accesses a recording file that is hosted on a WebEx meeting site. The Cisco WebEx WRF Player can also be manually installed for offline playback after downloading the application from http://www.webex.com/play-webex-recording.html. If the Cisco WebEx WRF Player was automatically installed, it will be automatically upgraded to the latest, nonvulnerable version when users access a recording file that is hosted on a WebEx meeting site. If the Cisco WebEx WRF Player was manually installed, users will need to manually install a new version of the Cisco WebEx WRF Player after downloading the latest version from http://www.webex.com/play-webex-recording.html. Cisco has updated affected versions of the WebEx meeting sites and Cisco WebEx WRF Player to address these vulnerabilities.  This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121010-webex

Cisco advisory · CSAF JSON

Workarounds

While there are no workarounds for the vulnerabilities detailed in this advisory, it is possible to remove all WebEx software completely from a system using the Meeting Services Removal Tool (for Microsoft Windows users) or Mac Cisco-WebEx Uninstaller (for Apple Mac users) available at http://support.webex.com/support/downloads.html["http://support.webex.com/support/downloads.html"]. Removal of WebEx software from a Linux or UNIX-based system can be accomplished by following the steps in the WebEx knowledge base help article at the following link: https://support.webex.com/MyAccountWeb/knowledgeBase.do?root=Tools&parent=Knowledge&articleId=WBX28548&txtSearchQuery=uninstall%20linux#["https://support.webex.com/MyAccountWeb/knowledgeBase.do?root=Tools&parent=Knowledge&articleId=WBX28548&txtSearchQuery=uninstall%20linux#"].

CVEsCVE-2012-3936, CVE-2012-3937, CVE-2012-3938, CVE-2012-3939, CVE-2012-3940, CVE-2012-3941
Cisco Bug IDsCSCtz72850, CSCtz72958, CSCtz72967, CSCtz73583, CSCua40962, CSCua61331
CVSS ScoreBase 9.3
Base 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C
Base 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C
Product Names From Source
Cisco WebEx Event Center, Cisco WebEx Meeting Center, Cisco WebEx Sales Center, Cisco WebEx Support Center, Cisco WebEx Training Center

Related Products

Product CVE Evidence
Cisco WebEx WRF Player CVE-2012-3941 Cisco OpenVuln
Cisco WebEx WRF Player CVE-2012-3940 Cisco OpenVuln
Cisco WebEx WRF Player CVE-2012-3939 Cisco OpenVuln
Cisco WebEx WRF Player CVE-2012-3938 Cisco OpenVuln
Cisco WebEx WRF Player CVE-2012-3937 Cisco OpenVuln
Cisco WebEx WRF Player CVE-2012-3936 Cisco OpenVuln
Cisco WebEx Training Center CVE-2012-3941 Cisco OpenVuln
Cisco WebEx Training Center CVE-2012-3940 Cisco OpenVuln
Cisco WebEx Training Center CVE-2012-3939 Cisco OpenVuln
Cisco WebEx Training Center CVE-2012-3938 Cisco OpenVuln
Cisco WebEx Training Center CVE-2012-3937 Cisco OpenVuln
Cisco WebEx Training Center CVE-2012-3936 Cisco OpenVuln
Cisco WebEx Support Center CVE-2012-3941 Cisco OpenVuln
Cisco WebEx Support Center CVE-2012-3940 Cisco OpenVuln
Cisco WebEx Support Center CVE-2012-3939 Cisco OpenVuln
Cisco WebEx Support Center CVE-2012-3938 Cisco OpenVuln
Cisco WebEx Support Center CVE-2012-3937 Cisco OpenVuln
Cisco WebEx Support Center CVE-2012-3936 Cisco OpenVuln
Cisco WebEx Sales Center CVE-2012-3941 Cisco OpenVuln
Cisco WebEx Sales Center CVE-2012-3940 Cisco OpenVuln
Cisco WebEx Sales Center CVE-2012-3939 Cisco OpenVuln
Cisco WebEx Sales Center CVE-2012-3938 Cisco OpenVuln
Cisco WebEx Sales Center CVE-2012-3937 Cisco OpenVuln
Cisco WebEx Sales Center CVE-2012-3936 Cisco OpenVuln
Cisco WebEx Meeting Center CVE-2012-3941 Cisco OpenVuln
Cisco WebEx Meeting Center CVE-2012-3940 Cisco OpenVuln
Cisco WebEx Meeting Center CVE-2012-3939 Cisco OpenVuln
Cisco WebEx Meeting Center CVE-2012-3938 Cisco OpenVuln
Cisco WebEx Meeting Center CVE-2012-3937 Cisco OpenVuln
Cisco WebEx Meeting Center CVE-2012-3936 Cisco OpenVuln
Cisco WebEx Event Center CVE-2012-3941 Cisco OpenVuln
Cisco WebEx Event Center CVE-2012-3940 Cisco OpenVuln
Cisco WebEx Event Center CVE-2012-3939 Cisco OpenVuln
Cisco WebEx Event Center CVE-2012-3938 Cisco OpenVuln
Cisco WebEx Event Center CVE-2012-3937 Cisco OpenVuln
Cisco WebEx Event Center CVE-2012-3936 Cisco OpenVuln