cnvd - cnvd-2018-02227

cnvd-2018-02227

Vulnerability from cnvd

Title: Cisco WebEx Network Recording Player缓冲区溢出漏洞（CNVD-2018-02227）

Description:

Cisco WebEx Network Recording Player是用于回放在在线会议参加者的计算机上记录的WebEx会议记录的应用程序。

Cisco WebEx Network Recording Player存在缓冲区溢出漏洞。本地攻击者可通过向用户发送链接或带有恶意ARF文件的电子邮件附件并说服用户关注该链接或启动该文件利用该漏洞在用户系统上执行任意代码。

Severity: 中

Patch Name: Cisco WebEx Network Recording Player缓冲区溢出漏洞（CNVD-2018-02227）的补丁

Patch Description:

Cisco WebEx Network Recording Player是用于回放在在线会议参加者的计算机上记录的WebEx会议记录的应用程序。

Cisco WebEx Network Recording Player存在缓冲区溢出漏洞。本地攻击者可通过向用户发送链接或带有恶意ARF文件的电子邮件附件并说服用户关注该链接或启动该文件利用该漏洞在用户系统上执行任意代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布漏洞修复程序，请及时关注更新： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp

Reference: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp https://www.securityfocus.com/bid/102369

Impacted products

Name
['Cisco WebEx Business Suite', 'Cisco WebEx Meetings Server 2.7', 'Cisco WebEx Network Recording Player 0', 'Cisco WebEx Meetings T31', 'Cisco WebEx Meetings T30']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "102369"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-0103"
    }
  },
  "description": "Cisco WebEx Network Recording Player\u662f\u7528\u4e8e\u56de\u653e\u5728\u5728\u7ebf\u4f1a\u8bae\u53c2\u52a0\u8005\u7684\u8ba1\u7b97\u673a\u4e0a\u8bb0\u5f55\u7684WebEx\u4f1a\u8bae\u8bb0\u5f55\u7684\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nCisco WebEx Network Recording Player\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411\u7528\u6237\u53d1\u9001\u94fe\u63a5\u6216\u5e26\u6709\u6076\u610fARF\u6587\u4ef6\u7684\u7535\u5b50\u90ae\u4ef6\u9644\u4ef6\u5e76\u8bf4\u670d\u7528\u6237\u5173\u6ce8\u8be5\u94fe\u63a5\u6216\u542f\u52a8\u8be5\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u7528\u6237\u7cfb\u7edf\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "discovererName": "Steven Seeley of Offensive Security, working with Trend Micro\u00e2??s Zero Day Initiative",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-02227",
  "openTime": "2018-01-30",
  "patchDescription": "Cisco WebEx Network Recording Player\u662f\u7528\u4e8e\u56de\u653e\u5728\u5728\u7ebf\u4f1a\u8bae\u53c2\u52a0\u8005\u7684\u8ba1\u7b97\u673a\u4e0a\u8bb0\u5f55\u7684WebEx\u4f1a\u8bae\u8bb0\u5f55\u7684\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nCisco WebEx Network Recording Player\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5411\u7528\u6237\u53d1\u9001\u94fe\u63a5\u6216\u5e26\u6709\u6076\u610fARF\u6587\u4ef6\u7684\u7535\u5b50\u90ae\u4ef6\u9644\u4ef6\u5e76\u8bf4\u670d\u7528\u6237\u5173\u6ce8\u8be5\u94fe\u63a5\u6216\u542f\u52a8\u8be5\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u7528\u6237\u7cfb\u7edf\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco WebEx Network Recording Player\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2018-02227\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco WebEx Business Suite",
      "Cisco WebEx Meetings Server 2.7",
      "Cisco WebEx Network Recording Player 0",
      "Cisco WebEx Meetings T31",
      "Cisco WebEx Meetings T30"
    ]
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp\r\nhttps://www.securityfocus.com/bid/102369",
  "serverity": "\u4e2d",
  "submitTime": "2018-01-04",
  "title": "Cisco WebEx Network Recording Player\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2018-02227\uff09"
}

CVE-2018-0103 (GCVE-0-2018-0103)

Vulnerability from cvelistv5

Published

2018-01-04 06:00

Modified

2024-12-02 21:47

Severity ?

CWE

CWE-119

Summary

A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a local attacker to execute arbitrary code on the system of a user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user to follow the link or launch the file. Successful exploitation could allow the attacker to execute arbitrary code on the user's system. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF players. Cisco Bug IDs: CSCvg78835, CSCvg78837, CSCvg78839.

References

▼	URL	Tags
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/102369	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	Cisco WebEx Network Recording Player	Version: Cisco WebEx Network Recording Player

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:14:16.802Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp"
          },
          {
            "name": "102369",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/102369"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2018-0103",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-02T19:09:17.825236Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-02T21:47:40.951Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco WebEx Network Recording Player",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco WebEx Network Recording Player"
            }
          ]
        }
      ],
      "datePublic": "2018-01-04T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a local attacker to execute arbitrary code on the system of a user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user to follow the link or launch the file. Successful exploitation could allow the attacker to execute arbitrary code on the user\u0027s system. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF players. Cisco Bug IDs: CSCvg78835, CSCvg78837, CSCvg78839."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "CWE-119",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-04T10:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp"
        },
        {
          "name": "102369",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/102369"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2018-0103",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco WebEx Network Recording Player",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco WebEx Network Recording Player"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a local attacker to execute arbitrary code on the system of a user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user to follow the link or launch the file. Successful exploitation could allow the attacker to execute arbitrary code on the user\u0027s system. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF players. Cisco Bug IDs: CSCvg78835, CSCvg78837, CSCvg78839."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-wnrp"
            },
            {
              "name": "102369",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/102369"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2018-0103",
    "datePublished": "2018-01-04T06:00:00",
    "dateReserved": "2017-11-27T00:00:00",
    "dateUpdated": "2024-12-02T21:47:40.951Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted