Cisco WebEx Recording Format Player atas32.dll Memory Corruption
Severity: : Critical
CVE Kennungen: : CVE-2012-3939
Advisory Date: 21 lipca 2015
DESCRIPTION
Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted WRF file, aka Bug ID CSCua61331.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005227
Trend Micro Deep Security DPI Rule Name: 1005227 - Cisco WebEx Recording Format Player atas32.dll Memory Corruption
AFFECTED SOFTWARE AND VERSION:
- cisco webex_recording_format_player 27.11.26
- cisco webex_recording_format_player 27.21.10
- cisco webex_recording_format_player 27.25.10
- cisco webex_recording_format_player 27.32.1
- cisco webex_recording_format_player 28.0.0