漏洞标题
Cisco Webex Network Recording Player和Cisco Webex Player的远程代码执行漏洞
漏洞描述信息
Cisco Webex Network Recording Player和Cisco Webex Player的远程代码执行漏洞
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Cisco Webex Network Recording Player and Cisco Webex Player Remote Code Execution Vulnerabilities
漏洞描述信息
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerability exist because the affected software improperly validates Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file via a link or an email attachment and persuading the user to open the file by using the affected software. A successful exploit could allow the attacker to execute arbitrary code on the affected system.
CVSS信息
N/A
漏洞类别
输入验证不恰当
漏洞标题
Cisco Webex Network Recording Player和Webex Player 输入验证漏洞
漏洞描述信息
Cisco Webex Network Recording Player和Webex Player都是美国思科(Cisco)公司的用于播放视频会议记录的播放器。 基于Windows平台的Cisco Webex Network Recording Player和Webex Player中存在输入验证漏洞,该漏洞源于软件对Advanced Recording Format (ARF)和Webex Recording Format (WRF)文件验证不当。攻击者可通过发送恶意的ARF或WRF文件利用该漏洞在受影
CVSS信息
N/A
漏洞类别
输入验证错误