CVE-2010-3270

Loading...

General

Score:6.8/10.0
Severity:Medium
Category:Buffer Error
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:High
Authentication:Single

Published on 03/02/11 - Updated on 10/10/18

Description

Stack-based buffer overflow in Cisco WebEx Meeting Center T27LB before SP21 EP3 and T27LC before SP22 allows user-assisted remote authenticated users to execute arbitrary code by providing a crafted .atp file and then disconnecting from a meeting. NOTE: since this is a site-specific issue with no expected action for consumers, it might be REJECTed.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2010-3270
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2011-AVI-050

Exploits

SecurityFocusBID-46078

Relative technologies

VendorProduct
ciscowebex_meeting_center

Share this vulnerability with:

Twitter Facebook LinkedIn Mail