1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Cisco WebEx CVE-2010-3269

Web Attack: Cisco WebEx CVE-2010-3269

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in Cisco WebEx which may lead to arbitrary code execution.

Additional Information

Cisco WebEx is a sharing and conferencing application for Microsoft Windows, Linux, and Mac OS X.

Cisco WebEx is prone to multiple remote buffer-overflow vulnerabilities due to a failure to properly bounds check user-supplied data. The problem occurs in the WebEx Recording Format (WRF) and Advanced Recording Format (ARF) players.

Successful exploits will allow attackers to execute arbitrary code with the privileges of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • Cisco WebEx
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube