// For flags

CVE-2013-1119

 

Severity Score

9.3
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflow in Cisco WebEx Recording Format (WRF) player T27 LD before SP32 EP16, T27 L10N before SP32_ORION111, and T28 before T28.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted DHT index value in JPEG data within a WRF file, aka Bug ID CSCuc24503.

Desbordamiento de buffer en Cisco WebEx Recording Format (WRF) player T27 LD (anteriores a SP32 EP16), T27 L10N (anteriores a SP32_ORION111), y T28 (anteriores a T28.8) permiten a un atacante remoto ejecutar código a discrección o causar una denegación de servicio (corrupción de memoria) a través de un valor de índice DHT manipulado en los datos JPEG de un archivo WRF, tambien conocido como Bud ID CSCuc24503.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2013-01-11 CVE Reserved
  • 2013-09-06 CVE Published
  • 2024-09-16 CVE Updated
  • 2024-09-17 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
27.11.26
Search vendor "Cisco" for product "Webex Recording Format Player" and version "27.11.26"
-
Affected
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
27.21.10
Search vendor "Cisco" for product "Webex Recording Format Player" and version "27.21.10"
-
Affected
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
27.25.10
Search vendor "Cisco" for product "Webex Recording Format Player" and version "27.25.10"
-
Affected
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
27.32.1
Search vendor "Cisco" for product "Webex Recording Format Player" and version "27.32.1"
-
Affected
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
27.32.10
Search vendor "Cisco" for product "Webex Recording Format Player" and version "27.32.10"
-
Affected
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
28.0.0
Search vendor "Cisco" for product "Webex Recording Format Player" and version "28.0.0"
-
Affected
Cisco
Search vendor "Cisco"
Webex Recording Format Player
Search vendor "Cisco" for product "Webex Recording Format Player"
28.4
Search vendor "Cisco" for product "Webex Recording Format Player" and version "28.4"
-
Affected