Cisco WebEx ARF Player Multiple Vulnerabilities (cisco-sa-20140507-webex)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The video player installed on the remote Windows host has multiple
vulnerabilities.

Description :

The version of Cisco WebEx ARF Player installed on the remote host has
multiple buffer overflow and memory corruption vulnerabilities. A
remote attacker could exploit these issues by tricking a user into
opening a malicious ARF file, resulting in denial of service or
arbitrary code execution.

See also :

http://www.nessus.org/u?c753937d

Solution :

Upgrade to the latest version of the WebEx ARF Player as described in
Cisco advisory cisco-sa-20140507-webex.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 74015 ()

Bugtraq ID: 67259
67260
67261
67262
67264

CVE ID: CVE-2014-2132
CVE-2014-2133
CVE-2014-2134
CVE-2014-2135
CVE-2014-2136

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now