// For flags

CVE-2013-1116

 

Severity Score

9.3
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflow in Cisco WebEx Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T27 L10N before SP32_ORION111, and T28 before T28.8 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted ARF file, aka Bug IDs CSCue74147 and CSCub28383.

Desbordamiento de búfer en Cisco WebEx Advanced Recording Format (ARF) player T27 LD anterior a SP32 EP16, T27 L10N anterior a SP32_ORION111, y T28 anterior a T28.8 permite a atacantes remotos ejecutar código arbitrario o provocar una denegación de servicio (corrupción de memoria dinámica) a través de un fichero ARF manipulado. Aka Bug IDs CSCue74147 y CSCub28383.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2013-01-11 CVE Reserved
  • 2013-09-06 CVE Published
  • 2024-09-17 CVE Updated
  • 2024-09-17 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Webex Advanced Recording Format Player
Search vendor "Cisco" for product "Webex Advanced Recording Format Player"
27.11.26
Search vendor "Cisco" for product "Webex Advanced Recording Format Player" and version "27.11.26"
-
Affected
Cisco
Search vendor "Cisco"
Webex Advanced Recording Format Player
Search vendor "Cisco" for product "Webex Advanced Recording Format Player"
27.21.10
Search vendor "Cisco" for product "Webex Advanced Recording Format Player" and version "27.21.10"
-
Affected
Cisco
Search vendor "Cisco"
Webex Advanced Recording Format Player
Search vendor "Cisco" for product "Webex Advanced Recording Format Player"
27.25.10
Search vendor "Cisco" for product "Webex Advanced Recording Format Player" and version "27.25.10"
-
Affected
Cisco
Search vendor "Cisco"
Webex Advanced Recording Format Player
Search vendor "Cisco" for product "Webex Advanced Recording Format Player"
27.32.1
Search vendor "Cisco" for product "Webex Advanced Recording Format Player" and version "27.32.1"
-
Affected
Cisco
Search vendor "Cisco"
Webex Advanced Recording Format Player
Search vendor "Cisco" for product "Webex Advanced Recording Format Player"
28.0.0
Search vendor "Cisco" for product "Webex Advanced Recording Format Player" and version "28.0.0"
-
Affected