Cisco.WebEx.CVE-2020-3319.Memory.Corruption
Description
This indicates an attack attempt against a Memory Corruption vulnerability in Cisco Webex Network Recording Player and Webex Player.
The vulnerability is caused by an error when the vulnerable software handles a crafted ARF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the user, via a crafted ARF file.
Affected Products
Cisco Webex Network Recording Player and Webex Player versions earlier than Release 3.0 MR3 Security Patch 2 and 4.0 MR3
Impact
Denial of Service: Remote attackers can crash vulnerable application.
Recommended Actions
Apply the latest update from the vendor.
https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98254
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |