CVSS: 9.3EPSS: 28%CPEs: 10EXPL: 0CVE-2010-3269
https://notcve.org/view.php?id=CVE-2010-3269
Multiple stack-based buffer overflows in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players T27LB before SP21 EP3 and T27LC before SP22 allow remote attackers to execute arbitrary code via a crafted (1) .wrf or (2) .arf file, related to use of a function pointer in a callback mechanism. Desbordamiento de búfer basado en pila en Cisco WebEx Recording Format (WRF) y Advanced Recording Format (ARF) Players T27LB anteriores a SP21 EP3 y T27LC anteriores a SP22, permite a atacantes remotos ejecutar código de su elección a través de ficheros (1) .wrf o (2) .arf manipulados, relacionado con el uso de la función pointer en un mecanismo de retorno de llamada. • http://securitytracker.com/id?1025015 http://tools.cisco.com/security/center/viewAlert.x?alertId=22016 http://www.cisco.com/en/US/products/products_security_advisory09186a0080b6913f.shtml http://www.coresecurity.com/content/webex-atp-and-wrf-overflow-vulnerabilities http://www.securityfocus.com/archive/1/516095/100/0/threaded http://www.securityfocus.com/bid/46075 http://www.vupen.com/english/advisories/2011/0261 https://exchange.xforce.ibmcloud.com/vulnerabilities/65076 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •