Intrusion Prevention

Cisco.WebEx.Player.WRF.File.Memory.Corruption

Description

This indicates the detection of an attack attempt against a Memory Corruption vulnerability in Cisco WebEx Player.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted wrf file. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.

Affected Products

Cisco Webex Meetings Suite (WBS31) - Webex Network Recording Player and Webex Player versions prior to WBS31.23
Cisco Webex Meetings Suite (WBS32) - Webex Network Recording Player and Webex Player versions prior to WBS32.15
Cisco Webex Meetings Suite (WBS33) - Webex Network Recording Player and Webex Player versions prior to WBS33.2
Cisco Webex Meetings Online - Webex Network Recording Player and WebEx Player versions prior to 1.3.35
Cisco Webex Meetings Server - Webex Network Recording Player versions prior to 3.0MR1

Impact

Denial of Service: Remote attackers can crash vulnerable application.

CVE References

CVE-2018-0380