安全研究

安全漏洞
Cisco WebEx WRF和ATAS32文件格式多个远程缓冲区溢出漏洞

发布日期:2011-10-27
更新日期:2011-10-27

受影响系统:
Cisco WebEx Cisco WebEx 27
Cisco WebEx Cisco WebEx 0
Cisco WebEx Cisco WebEx (Windows) 27LC SP2
Cisco WebEx Cisco WebEx (Windows) 27LB SP2
Cisco WebEx Cisco WebEx (Windows) 27.10
Cisco WebEx Cisco WebEx (Windows) 27.00
Cisco WebEx Cisco WebEx (Windows) 26.49.32
Cisco WebEx Cisco WebEx (Windows) 26.00
Cisco WebEx Cisco WebEx (Mac OS X) 27LC SP
Cisco WebEx Cisco WebEx (Mac OS X) 27LB SP
Cisco WebEx Cisco WebEx (Mac OS X) 27.11.8
Cisco WebEx Cisco WebEx (Mac OS X) 27.00
Cisco WebEx Cisco WebEx (Mac OS X) 26.49.3
Cisco WebEx Cisco WebEx (Mac OS X) 26.00
Cisco WebEx Cisco WebEx (Linux) 27LC SP22
Cisco WebEx Cisco WebEx (Linux) 27LB SP21
Cisco WebEx Cisco WebEx (Linux) 27.11.8
Cisco WebEx Cisco WebEx (Linux) 27.00
Cisco WebEx Cisco WebEx (Linux) 26.49.35
Cisco WebEx Cisco WebEx (Linux) 26.00
不受影响系统:
Cisco WebEx Cisco WebEx (Windows) T27 SP28
Cisco WebEx Cisco WebEx (Windows) T27 SP25
Cisco WebEx Cisco WebEx (Windows) T27 SP23
Cisco WebEx Cisco WebEx (Windows) T27 SP21
Cisco WebEx Cisco WebEx (Windows) T27 SP11
Cisco WebEx Cisco WebEx (Windows) T27 FR20
Cisco WebEx Cisco WebEx (Windows) T26 SP49
Cisco WebEx Cisco WebEx (Mac OS X) T27 SP2
Cisco WebEx Cisco WebEx (Mac OS X) T27 SP2
Cisco WebEx Cisco WebEx (Mac OS X) T27 SP2
Cisco WebEx Cisco WebEx (Mac OS X) T27 SP2
Cisco WebEx Cisco WebEx (Mac OS X) T27 SP1
Cisco WebEx Cisco WebEx (Mac OS X) T27 FR2
Cisco WebEx Cisco WebEx (Mac OS X) T26 SP4
Cisco WebEx Cisco WebEx (Linux) T27 SP28
Cisco WebEx Cisco WebEx (Linux) T27 SP25 E
Cisco WebEx Cisco WebEx (Linux) T27 SP23
Cisco WebEx Cisco WebEx (Linux) T27 SP21 E
Cisco WebEx Cisco WebEx (Linux) T27 SP11 E
Cisco WebEx Cisco WebEx (Linux) T27 FR20
Cisco WebEx Cisco WebEx (Linux) T26 SP49 E
描述:
BUGTRAQ  ID: 50373
CVE ID: CVE-2011-3319,CVE-2011-4004

WebEx是全球最大的网络通信服务供应商,可提供电信级网络会议解决方案。目前WebEx已被Cisco收购。Cisco WebEx WRF Player用于播放与会者在电脑上所记录的WebEx会议记录。

Cisco WebEx在处理WRF和ARF文件格式的实现上存在多个远程缓冲区溢出漏洞,攻击者可利用这些漏洞以受影响应用程序权限执行任意代码或造成拒绝服务。

1)在处理WRF文件时的错误可被利用通过.wrf文件造成缓冲区溢出。

2)在解析WRF文件的linesProcessed值时,ATAS32组件中存在整数下溢漏洞,可通过特制的.wrf文件造成缓冲区溢出。

<*来源:TippingPoint (http://www.tippingpoint.com/)
  
  链接:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111026-webex
*>

建议:
厂商补丁:

Cisco
-----
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.cisco.com/warp/public/707/advisory.html

浏览次数:2285
严重程度:0(网友投票)
本安全漏洞由绿盟科技翻译整理,版权所有,未经许可,不得转载
绿盟科技给您安全的保障
关于我们
公司介绍
公司荣誉
公司新闻
联系我们
公司总部
分支机构
海外机构
快速链接
绿盟云
绿盟威胁情报中心NTI
技术博客