Vulnerabilities > CVE-2016-1415 - Resource Management Errors vulnerability in Cisco Webex WRF Player T29 Sp10Base

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

cisco

CWE-399

exploit available

NVD

Published: 2016-09-03

Updated: 2017-09-03

Summary

Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted file, aka Bug ID CSCuz80455.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Webex WRF Player T29 Sp10_Base	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Exploit-Db

description	Cisco Webex Player T29.10 - '.ARF' Out-of-Bounds Memory Corruption. CVE-2016-1415. Dos exploit for Windows platform
file	exploits/windows/dos/40509.txt
id	EDB-ID:40509
last seen	2016-10-12
modified	2016-10-12
platform	windows
port
published	2016-10-12
reporter	COSIG
source	https://www.exploit-db.com/download/40509/
title	Cisco Webex Player T29.10 - '.ARF' Out-of-Bounds Memory Corruption
type	dos

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References