Critical severity9.6NVD Advisory· Published Nov 30, 2017· Updated May 13, 2026
CVE-2017-12367
CVE-2017-12367
Description
A "Cisco WebEx Network Recording Player Denial of Service Vulnerability" exists in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files. A remote attacker could exploit this by providing a user with a malicious ARF or WRF file via email or URL and convincing the user to launch the file. Exploitation of this could cause an affected player to crash and, in some cases, could allow arbitrary code execution on the system of a targeted user. Cisco Bug IDs: CSCve11545, CSCve02843, CSCve11548.
Affected products
4cpe:2.3:a:cisco:webex_meetings_server:t29:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:cisco:webex_meetings_server:t29:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_meetings_server:t30:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:webex_meetings_server:t31.11.2:*:*:*:*:*:*:*
- Range: Cisco WebEx Recording Format and Advanced Recording Format Players
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/bid/102017nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039895nvdThird Party AdvisoryVDB Entry
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-webex-playersnvdVendor Advisory
News mentions
0No linked articles in our index yet.