Intrusion PreventionCisco.WebEx.NRP.CVE-2019-1772.Arbitrary.Code.Execution
Description
This indicates an attack attempt against a Memory Corruption vulnerability in Cisco Webex Network Recording Player.
The vulnerability is due to Cisco Webex Network Recording Player improper handling of Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.
Affected Products
Cisco Webex Business Suite sites - All Webex Network Recording Player and Webex Player versions prior to Version WBS39.2.205
Cisco Webex Meetings Online - All Webex Network Recording Player and Webex Player versions prior to Version 1.3.42
Cisco Webex Meetings Server - All Webex Network Recording Player versions prior to Version 2.8MR3 SecurityPatch2, 3.0MR2 SecurityPatch2, or 4.0
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-webex-player
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-11-22 | 15.729 | Name:Cisco. Webex. NRP. CVE-2019-1772. Arbitrary. Code. Execution:Cisco. WebEx. NRP. CVE-2019-1772. Arbitrary. Code. Execution |
| 2019-05-16 | 14.615 | Name:FG-VD-19-003_Cisco. 0day:Cisco. Webex. NRP. CVE-2019-1772. Arbitrary. Code. Execution |
| 2019-04-03 | 14.585 | Default_action:pass:drop |
| 2019-03-20 | 14.577 |
| ID | 47639 |
| Created | Mar 20, 2019 |
| Updated | May 02, 2022 |
| Risk |
|
| CVE ID | CVE-2019-1772 |
| Exploit Prediction Score | 0.06% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Cisco |