Threat Encyclopedia

Cisco.WebEx.CVE-2020-3321.Memory.Corruption

description-logoDescription

This indicates an attack attempt against a Memory Corruption vulnerability in Cisco Webex Network Recording Player and Webex Player.
The vulnerability is caused by an error when the vulnerable software handles a crafted ARF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the user, via a crafted ARF file.

affected-products-logoAffected Products

Cisco Webex Network Recording Player and Webex Player versions earlier than Release 3.0 MR3 Security Patch 2 and 4.0 MR3

Impact

Denial of Service: Remote attackers can crash vulnerable application.

recomended-action-logoRecommended Actions

Apply the latest update from the vendor.
https://quickview.cloudapps.cisco.com/quickview/bug/CSCvs98259

CVE References

CVE-2020-3321