cnvd - cnvd-2018-13902

cnvd-2018-13902

Vulnerability from cnvd

Title: Cisco Webex Network Recording Player远程代码执行漏洞

Description:

Cisco Webex Meetings Suite sites、Webex Meetings Online sites和Webex Meetings Server都是美国思科（Cisco）公司的多功能视频会议解决方案。Webex Network Recording Player for Advanced Recording Format（ARF）和Webex Recording Format（WRF）是其中的一个主要用于播放ARF和WRF格式的WebEx录制文件的媒体播放器。

Cisco Webex Network Recording Player for ARF和WRF文件中存在资源管理错误漏洞。攻击者可借助邮件或URL向用户提供恶意的.arf或.wrf文件并诱使用户启用该文件利用该漏洞在目标用户的系统上执行任意代码。

Severity: 高

Patch Name: Cisco Webex Network Recording Player远程代码执行漏洞的补丁

Patch Description:

Cisco Webex Network Recording Player for ARF和WRF文件中存在资源管理错误漏洞。攻击者可借助邮件或URL向用户提供恶意的.arf或.wrf文件并诱使用户启用该文件利用该漏洞在目标用户的系统上执行任意代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce

Reference: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce

Impacted products

Name
Cisco Webex Network Rocording Player <=33.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-0379"
    }
  },
  "description": "Cisco Webex Meetings Suite sites\u3001Webex Meetings Online sites\u548cWebex Meetings Server\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u591a\u529f\u80fd\u89c6\u9891\u4f1a\u8bae\u89e3\u51b3\u65b9\u6848\u3002Webex Network Recording Player for Advanced Recording Format\uff08ARF\uff09\u548cWebex Recording Format\uff08WRF\uff09\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4e3b\u8981\u7528\u4e8e\u64ad\u653eARF\u548cWRF\u683c\u5f0f\u7684WebEx\u5f55\u5236\u6587\u4ef6\u7684\u5a92\u4f53\u64ad\u653e\u5668\u3002\r\n\r\nCisco Webex Network Recording Player for ARF\u548cWRF\u6587\u4ef6\u4e2d\u5b58\u5728\u8d44\u6e90\u7ba1\u7406\u9519\u8bef\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u90ae\u4ef6\u6216URL\u5411\u7528\u6237\u63d0\u4f9b\u6076\u610f\u7684.arf\u6216.wrf\u6587\u4ef6\u5e76\u8bf1\u4f7f\u7528\u6237\u542f\u7528\u8be5\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u76ee\u6807\u7528\u6237\u7684\u7cfb\u7edf\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-13902",
  "openTime": "2018-07-25",
  "patchDescription": "Cisco Webex Meetings Suite sites\u3001Webex Meetings Online sites\u548cWebex Meetings Server\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u591a\u529f\u80fd\u89c6\u9891\u4f1a\u8bae\u89e3\u51b3\u65b9\u6848\u3002Webex Network Recording Player for Advanced Recording Format\uff08ARF\uff09\u548cWebex Recording Format\uff08WRF\uff09\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4e3b\u8981\u7528\u4e8e\u64ad\u653eARF\u548cWRF\u683c\u5f0f\u7684WebEx\u5f55\u5236\u6587\u4ef6\u7684\u5a92\u4f53\u64ad\u653e\u5668\u3002\r\n\r\nCisco Webex Network Recording Player for ARF\u548cWRF\u6587\u4ef6\u4e2d\u5b58\u5728\u8d44\u6e90\u7ba1\u7406\u9519\u8bef\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u90ae\u4ef6\u6216URL\u5411\u7528\u6237\u63d0\u4f9b\u6076\u610f\u7684.arf\u6216.wrf\u6587\u4ef6\u5e76\u8bf1\u4f7f\u7528\u6237\u542f\u7528\u8be5\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u76ee\u6807\u7528\u6237\u7684\u7cfb\u7edf\u4e0a\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Webex Network Recording Player\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Webex Network Rocording Player \u003c=33.2"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce",
  "serverity": "\u9ad8",
  "submitTime": "2018-07-25",
  "title": "Cisco Webex Network Recording Player\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

CVE-2018-0379 (GCVE-0-2018-0379)

Vulnerability from cvelistv5

Published

2018-07-18 23:00

Modified

2024-11-29 14:50

Severity ?

CWE

CWE-119

Summary

Multiple vulnerabilities exist in the Cisco Webex Network Recording Player for Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An attacker could exploit these vulnerabilities by providing a user with a malicious .arf or .wrf file via email or URL and convincing the user to launch the file in the Webex recording players. Exploitation of these vulnerabilities could allow arbitrary code execution on the system of a targeted user. These vulnerabilities affect ARF and WRF recording players available from Cisco Webex Meetings Suite sites, Cisco Webex Meetings Online sites, and Cisco Webex Meetings Server. Cisco Bug IDs: CSCvi02621, CSCvi02965, CSCvi63329, CSCvi63333, CSCvi63335, CSCvi63374, CSCvi63376, CSCvi63377, CSCvi63391, CSCvi63392, CSCvi63396, CSCvi63495, CSCvi63497, CSCvi63498, CSCvi82684, CSCvi82700, CSCvi82705, CSCvi82725, CSCvi82737, CSCvi82742, CSCvi82760, CSCvi82771, CSCvj51284, CSCvj51294.

References

▼	URL	Tags
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce	x_refsource_CONFIRM
	http://www.securitytracker.com/id/1041347	vdb-entry, x_refsource_SECTRACK
	http://www.securityfocus.com/bid/104853	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	Cisco Webex Network Recording Players unknown	Version: Cisco Webex Network Recording Players unknown

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T03:21:15.477Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce"
          },
          {
            "name": "1041347",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041347"
          },
          {
            "name": "104853",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/104853"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2018-0379",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-29T14:41:29.094893Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-29T14:50:56.325Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Webex Network Recording Players unknown",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco Webex Network Recording Players unknown"
            }
          ]
        }
      ],
      "datePublic": "2018-07-18T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple vulnerabilities exist in the Cisco Webex Network Recording Player for Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An attacker could exploit these vulnerabilities by providing a user with a malicious .arf or .wrf file via email or URL and convincing the user to launch the file in the Webex recording players. Exploitation of these vulnerabilities could allow arbitrary code execution on the system of a targeted user. These vulnerabilities affect ARF and WRF recording players available from Cisco Webex Meetings Suite sites, Cisco Webex Meetings Online sites, and Cisco Webex Meetings Server. Cisco Bug IDs: CSCvi02621, CSCvi02965, CSCvi63329, CSCvi63333, CSCvi63335, CSCvi63374, CSCvi63376, CSCvi63377, CSCvi63391, CSCvi63392, CSCvi63396, CSCvi63495, CSCvi63497, CSCvi63498, CSCvi82684, CSCvi82700, CSCvi82705, CSCvi82725, CSCvi82737, CSCvi82742, CSCvi82760, CSCvi82771, CSCvj51284, CSCvj51294."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "CWE-119",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-07-27T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce"
        },
        {
          "name": "1041347",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1041347"
        },
        {
          "name": "104853",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/104853"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2018-0379",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Webex Network Recording Players unknown",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco Webex Network Recording Players unknown"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple vulnerabilities exist in the Cisco Webex Network Recording Player for Advanced Recording Format (ARF) and Webex Recording Format (WRF) files. An attacker could exploit these vulnerabilities by providing a user with a malicious .arf or .wrf file via email or URL and convincing the user to launch the file in the Webex recording players. Exploitation of these vulnerabilities could allow arbitrary code execution on the system of a targeted user. These vulnerabilities affect ARF and WRF recording players available from Cisco Webex Meetings Suite sites, Cisco Webex Meetings Online sites, and Cisco Webex Meetings Server. Cisco Bug IDs: CSCvi02621, CSCvi02965, CSCvi63329, CSCvi63333, CSCvi63335, CSCvi63374, CSCvi63376, CSCvi63377, CSCvi63391, CSCvi63392, CSCvi63396, CSCvi63495, CSCvi63497, CSCvi63498, CSCvi82684, CSCvi82700, CSCvi82705, CSCvi82725, CSCvi82737, CSCvi82742, CSCvi82760, CSCvi82771, CSCvj51284, CSCvj51294."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-webex-rce"
            },
            {
              "name": "1041347",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1041347"
            },
            {
              "name": "104853",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/104853"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2018-0379",
    "datePublished": "2018-07-18T23:00:00",
    "dateReserved": "2017-11-27T00:00:00",
    "dateUpdated": "2024-11-29T14:50:56.325Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted