CVE-2017-12360 | Vulnerability Database | Aqua Security

A vulnerability in Cisco WebEx Network Recording Player for WebEx Recording Format (WRF) files could allow an attacker to cause a denial of service (DoS) condition. An attacker could exploit this vulnerability by providing a user with a malicious WRF file via email or URL and convincing the user to open the file. A successful exploit could cause an affected player to crash, resulting in a DoS condition. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, and Cisco WebEx WRF players. Cisco Bug IDs: CSCve30294, CSCve30301.

Affected Software

Name	Vendor	Start Version	End Version
Webex_meeting_center	Cisco	t29 (including)	t29 (including)
Webex_meeting_center	Cisco	t30 (including)	t30 (including)
Webex_meeting_center	Cisco	t31 (including)	t31 (including)
Webex_meeting_center	Cisco	t32 (including)	t32 (including)

References

http://www.securityfocus.com/bid/102001
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-webex1

NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-12360
CWE	https://cwe.mitre.org/data/definitions/.html