Cisco WebEx Player Buffer Overflows Let Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1026888 |
|
SecurityTracker URL: http://securitytracker.com/id/1026888
|
|
CVE Reference:
CVE-2012-1335, CVE-2012-1336, CVE-2012-1337
(Links to External Site)
|
Date: Apr 4 2012
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
Several vulnerabilities were reported in Cisco WebEx Player. A remote user can cause arbitrary code to be executed on the target user's system.
A remote user can create a specially crafted WebEx recording file that, when loaded by the target user, will trigger a buffer overflow and execute arbitrary code on the target system. The code will run with the privileges of the target user.
The following versions are affected:
Client builds 27.32.0 (T27 LD SP32) and prior
Client builds 27.25.9 (T27 LC SP25 EP9) and prior
Client builds 27.21.10 (T27 LB SP21 EP10) and prior
Client builds 27.11.26 (T27 L SP11 EP26) and prior
Secunia and iDefense reported these vulnerabilities.
|
Impact:
A remote user can create a WRF file that, when loaded by the target user, will execute arbitrary code on the target user's system.
|
Solution:
The vendor has issued a fix (Client builds 27.25.10 (T27 LC SP25 EP10), Client builds 27.32.1 (T27 LD SP32 CP1).
The vendor's advisory is available at:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex
|
Vendor URL: tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS:
Linux (Any), UNIX (OS X), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 4 Apr 2012 12:08:11 -0400
Subject: Cisco Security Advisory: Buffer Overflow Vulnerabilities in the Cisco WebEx Player
|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Cisco Security Advisory: Buffer Overflow Vulnerabilities in the Cisco
WebEx Player
Advisory ID: cisco-sa-20120404-webex
Revision 1.0
For Public Release 2012 April 4 16:00 UTC (GMT)
+--------------------------------------------------------------------
Summary
=======
The Cisco WebEx Recording Format (WRF) player contains three buffer
overflow vulnerabilities. In some cases, exploitation of the
vulnerabilities could allow a remote attacker to execute arbitrary code
on the system with the privileges of a targeted user.
The Cisco WebEx Players are applications that are used to play back
WebEx meeting recordings that have been recorded on a WebEx meeting
site or on the computer of an online meeting attendee. The players can
be automatically installed when the user accesses a recording file that
is hosted on a WebEx meeting site. The players can also be manually
installed for offline playback after downloading the application from
www.webex.com.
If the WRF player was automatically installed, it will be automatically
upgraded to the latest, nonvulnerable version when users access a
recording file that is hosted on a WebEx meeting site. If the WRF
player was manually installed, users will need to manually install a
new version of the player after downloading the latest version from
www.webex.com.
Cisco has updated affected versions of the WebEx meeting sites and WRF
player to address these vulnerabilities.
This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webex
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iF4EAREIAAYFAk98YzcACgkQQXnnBKKRMNCTmQD/VY6JJbsShxFPEOhYw/LWLtkE
yW4X11Smv2wub8CSMWQA/i4FPoQK9LFWzv6Vtskr7GvTF9i6RNOs5sffl+WilfCC
=H8ML
-----END PGP SIGNATURE-----
_______________________________________________
cust-security-announce mailing list
cust-security-announce@cisco.com
To unsubscribe, send the command "unsubscribe" in the subject of your message to cust-security-announce-leave@cisco.com
|
|
