Cisco.Webex.CVE-2021-1502.Memory.Corruption
Description
This indicates the detection of an attack attempt against a Memory Corruption vulnerability in Cisco WebEx player.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted ARF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted ARF file.
Affected Products
Cisco Webex Network Recording Player releases earlier than Release 41.4.
Cisco Webex Player releases earlier than Release 41.4.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-dOJ2jOJ
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |