Sign-up

ID

VAR-201801-1055


CVE

CVE-2018-0104


TITLE

Cisco WebEx Network Recording Player Input validation vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-001272

DESCRIPTION

A vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a remote attacker to execute arbitrary code on the system of a targeted user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user to follow the link or launch the file. Successful exploitation could allow the attacker to execute arbitrary code on the user's system. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF players. Cisco Bug IDs: CSCvg78853, CSCvg78856, CSCvg78857. Vendors have confirmed this vulnerability Bug ID CSCvg78853 , CSCvg78856 ,and CSCvg78857 It is released as.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. While opening an ARF file, WebEx Network Recording Player loads a DLL from an unqualified path

Trust: 2.61

sources: NVD: CVE-2018-0104 // JVNDB: JVNDB-2018-001272 // ZDI: ZDI-18-008 // BID: 102382 // VULHUB: VHN-118306

AFFECTED PRODUCTS

vendor:ciscomodel:webex business suitescope:eqversion: -

Trust: 1.6

vendor:ciscomodel:webex meetingsscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:webex meetings serverscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:webex network recording playerscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:webex business suitescope: - version: -

Trust: 0.8

vendor:ciscomodel:webex meetingsscope: - version: -

Trust: 0.8

vendor:ciscomodel:webex meetings serverscope: - version: -

Trust: 0.8

vendor:ciscomodel:webex network recording playerscope: - version: -

Trust: 0.8

vendor:ciscomodel:webexscope: - version: -

Trust: 0.7

vendor:ciscomodel:webex network recording playerscope:eqversion:0

Trust: 0.3

vendor:ciscomodel:webex meetings serverscope:eqversion:2.7

Trust: 0.3

vendor:ciscomodel:webex meetings t31scope: - version: -

Trust: 0.3

vendor:ciscomodel:webex meetings t30scope: - version: -

Trust: 0.3

vendor:ciscomodel:webex business suitescope:eqversion:0

Trust: 0.3

vendor:ciscomodel:webex meetings t32.9scope:neversion: -

Trust: 0.3

vendor:ciscomodel:webex meetings t32scope:neversion: -

Trust: 0.3

vendor:ciscomodel:webex meetings t31.20.2scope:neversion: -

Trust: 0.3

sources: ZDI: ZDI-18-008 // BID: 102382 // JVNDB: JVNDB-2018-001272 // CNNVD: CNNVD-201801-205 // NVD: CVE-2018-0104

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-0104
value: CRITICAL

Trust: 1.0

NVD: CVE-2018-0104
value: CRITICAL

Trust: 0.8

ZDI: CVE-2018-0104
value: MEDIUM

Trust: 0.7

CNNVD: CNNVD-201801-205
value: CRITICAL

Trust: 0.6

VULHUB: VHN-118306
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2018-0104
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

ZDI: CVE-2018-0104
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.7

VULHUB: VHN-118306
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-0104
baseSeverity: CRITICAL
baseScore: 9.6
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 6.0
version: 3.0

Trust: 1.8

sources: ZDI: ZDI-18-008 // VULHUB: VHN-118306 // JVNDB: JVNDB-2018-001272 // CNNVD: CNNVD-201801-205 // NVD: CVE-2018-0104

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-118306 // JVNDB: JVNDB-2018-001272 // NVD: CVE-2018-0104

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201801-205

TYPE

Input Validation Error

Trust: 0.9

sources: BID: 102382 // CNNVD: CNNVD-201801-205

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-001272

PATCH
title:cisco-sa-20180103-warfpurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180103-warfp
Trust: 1.5
title:Multiple Cisco product WebEx ARF player Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=77520
Trust: 0.6
sources:
            
            
            ZDI: ZDI-18-008 // 
            
            
            
            JVNDB: JVNDB-2018-001272 // 
            
            
            
            CNNVD: CNNVD-201801-205

EXTERNAL IDS
db:NVDid:CVE-2018-0104
Trust: 3.5
db:BIDid:102382
Trust: 2.0
db:JVNDBid:JVNDB-2018-001272
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-5008
Trust: 0.7
db:ZDIid:ZDI-18-008
Trust: 0.7
db:CNNVDid:CNNVD-201801-205
Trust: 0.7
db:VULHUBid:VHN-118306
Trust: 0.1
sources:
            
            
            ZDI: ZDI-18-008 // 
            
            
            
            VULHUB: VHN-118306 // 
            
            
            
            BID: 102382 // 
            
            
            
            JVNDB: JVNDB-2018-001272 // 
            
            
            
            CNNVD: CNNVD-201801-205 // 
            
            
            
            NVD: CVE-2018-0104

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180103-warfp
Trust: 2.7
url:http://www.securityfocus.com/bid/102382
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0104
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-0104
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            ZDI: ZDI-18-008 // 
            
            
            
            VULHUB: VHN-118306 // 
            
            
            
            BID: 102382 // 
            
            
            
            JVNDB: JVNDB-2018-001272 // 
            
            
            
            CNNVD: CNNVD-201801-205 // 
            
            
            
            NVD: CVE-2018-0104

CREDITS
Steven Seeley (mr_me) of Offensive Security
Trust: 0.7
sources:
            
            
            ZDI: ZDI-18-008

SOURCES
db:ZDIid:ZDI-18-008
db:VULHUBid:VHN-118306
db:BIDid:102382
db:JVNDBid:JVNDB-2018-001272
db:CNNVDid:CNNVD-201801-205
db:NVDid:CVE-2018-0104

LAST UPDATE DATE
2024-11-23T22:52:14.102000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-18-008date:2018-01-03T00:00:00
db:VULHUBid:VHN-118306date:2019-10-09T00:00:00
db:BIDid:102382date:2018-01-03T00:00:00
db:JVNDBid:JVNDB-2018-001272date:2018-02-05T00:00:00
db:CNNVDid:CNNVD-201801-205date:2019-10-17T00:00:00
db:NVDid:CVE-2018-0104date:2024-11-21T03:37:31.737

SOURCES RELEASE DATE
db:ZDIid:ZDI-18-008date:2018-01-03T00:00:00
db:VULHUBid:VHN-118306date:2018-01-04T00:00:00
db:BIDid:102382date:2018-01-03T00:00:00
db:JVNDBid:JVNDB-2018-001272date:2018-02-05T00:00:00
db:CNNVDid:CNNVD-201801-205date:2018-01-05T00:00:00
db:NVDid:CVE-2018-0104date:2018-01-04T06:29:00.387