Details of VAR-202003-1180

ID

VAR-202003-1180

CVE

CVE-2020-3127

TITLE

Microsoft Windows for Cisco Webex Network Recording Player and Cisco Webex Player Input verification vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2020-002443

DESCRIPTION

Multiple vulnerabilities in Cisco Webex Network Recording Player for Microsoft Windows and Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system. The vulnerabilities are due to insufficient validation of certain elements within a Webex recording that is stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit these vulnerabilities by sending a malicious ARF or WRF file to a user through a link or email attachment and persuading the user to open the file on the local system. A successful exploit could allow the attacker to execute arbitrary code on the affected system with the privileges of the targeted user. (DoS) It may be put into a state. Crafted data in an ARF file can trigger access to memory prior to initialization. Microsoft Windows is an operating system used by a set of personal devices of Microsoft Corporation in the United States. The following products and versions are affected: Webex Network Recording Player Release WBS earlier than 39.5.17 (Cisco Webex Meetings), Release WBS earlier than 39.11.0 (Cisco Webex Meetings), Release 1.3.43 earlier (Cisco Webex Meetings Online), Release 3.0MR3 prior to SecurityPatch1 (Cisco Webex Meetings Server), prior to 4.0MR2SecurityPatch2 (Cisco Webex Meetings Server); Webex Player Release prior to WBS 39.5.17 (Cisco Webex Meetings), Release prior to Release WBS 39.11.0 (Cisco Webex Meetings) , versions earlier than Release 1.3.43 (Cisco Webex Meetings Online)

Trust: 2.34

sources: NVD: CVE-2020-3127 // JVNDB: JVNDB-2020-002443 // ZDI: ZDI-20-269 // VULHUB: VHN-181252

AFFECTED PRODUCTS

vendor:	cisco	model:	webex meetings online	scope:	lt	version:	1.3.43	Trust: 1.0
vendor:	cisco	model:	webex network recording player	scope:	lt	version:	39.5.17	Trust: 1.0
vendor:	cisco	model:	webex meetings server	scope:	lt	version:	3.0	Trust: 1.0
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	4.0	Trust: 1.0
vendor:	cisco	model:	webex network recording player	scope:	lt	version:	39.11.0	Trust: 1.0
vendor:	cisco	model:	webex meetings	scope:	lt	version:	39.5.17	Trust: 1.0
vendor:	cisco	model:	webex meetings	scope:	gte	version:	39.5	Trust: 1.0
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	3.0	Trust: 1.0
vendor:	cisco	model:	webex meetings	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	webex meetings online	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	webex meetings server	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	webex network recording player	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	webex	scope:	-	version:	-	Trust: 0.7
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	1.5	Trust: 0.6
vendor:	cisco	model:	webex meetings online	scope:	eq	version:	1.3.42	Trust: 0.6
vendor:	cisco	model:	webex meetings	scope:	eq	version:	39.5	Trust: 0.6
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	-	Trust: 0.6
vendor:	cisco	model:	webex meetings online	scope:	eq	version:	1.3.39	Trust: 0.6
vendor:	cisco	model:	webex meetings online	scope:	eq	version:	-	Trust: 0.6
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	1.0	Trust: 0.6
vendor:	cisco	model:	webex meetings online	scope:	eq	version:	1.3.37	Trust: 0.6
vendor:	cisco	model:	webex meetings server	scope:	eq	version:	1.1	Trust: 0.6
vendor:	cisco	model:	webex meetings online	scope:	eq	version:	1.3.38	Trust: 0.6

sources: ZDI: ZDI-20-269 // JVNDB: JVNDB-2020-002443 // CNNVD: CNNVD-202003-179 // NVD: CVE-2020-3127

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2020-3127
value:	HIGH
Trust: 1.0
ykramarz@cisco.com:	CVE-2020-3127
value:	HIGH
Trust: 1.0
NVD:	JVNDB-2020-002443
value:	HIGH
Trust: 0.8
ZDI:	CVE-2020-3127
value:	HIGH
Trust: 0.7
CNNVD:	CNNVD-202003-179
value:	HIGH
Trust: 0.6
VULHUB:	VHN-181252
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2020-3127
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
NVD:	JVNDB-2020-002443
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
VULHUB:	VHN-181252
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2020-3127
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 1.0
ykramarz@cisco.com:	CVE-2020-3127
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.0
Trust: 1.0
NVD:	JVNDB-2020-002443
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8
ZDI:	CVE-2020-3127
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.0
Trust: 0.7

sources: ZDI: ZDI-20-269 // VULHUB: VHN-181252 // JVNDB: JVNDB-2020-002443 // CNNVD: CNNVD-202003-179 // NVD: CVE-2020-3127 // NVD: CVE-2020-3127

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-181252 // JVNDB: JVNDB-2020-002443 // NVD: CVE-2020-3127

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202003-179

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-202003-179

CONFIGURATIONS

sources: JVNDB: JVNDB-2020-002443

PATCH

title:	cisco-sa-20200304-webex-player	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200304-webex-player	Trust: 1.5
title:	Cisco Webex Network Recording Player and Cisco Webex Player Enter the fix for the verification error vulnerability	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=111259	Trust: 0.6

sources: ZDI: ZDI-20-269 // JVNDB: JVNDB-2020-002443 // CNNVD: CNNVD-202003-179

EXTERNAL IDS

db:	NVD	id:	CVE-2020-3127	Trust: 3.2
db:	ZDI	id:	ZDI-20-269	Trust: 2.4
db:	JVNDB	id:	JVNDB-2020-002443	Trust: 0.8
db:	ZDI_CAN	id:	ZDI-CAN-9491	Trust: 0.7
db:	CNNVD	id:	CNNVD-202003-179	Trust: 0.7
db:	AUSCERT	id:	ESB-2020.0811	Trust: 0.6
db:	CNVD	id:	CNVD-2020-16516	Trust: 0.1
db:	VULHUB	id:	VHN-181252	Trust: 0.1

sources: ZDI: ZDI-20-269 // VULHUB: VHN-181252 // JVNDB: JVNDB-2020-002443 // CNNVD: CNNVD-202003-179 // NVD: CVE-2020-3127

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20200304-webex-player	Trust: 2.4
url:	https://www.zerodayinitiative.com/advisories/zdi-20-269/	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2020-3127	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-3127	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2020.0811/	Trust: 0.6

sources: ZDI: ZDI-20-269 // VULHUB: VHN-181252 // JVNDB: JVNDB-2020-002443 // CNNVD: CNNVD-202003-179 // NVD: CVE-2020-3127

CREDITS

Francis Provencher {PRL}

Trust: 0.7

sources: ZDI: ZDI-20-269

SOURCES

db:	ZDI	id:	ZDI-20-269
db:	VULHUB	id:	VHN-181252
db:	JVNDB	id:	JVNDB-2020-002443
db:	CNNVD	id:	CNNVD-202003-179
db:	NVD	id:	CVE-2020-3127

LAST UPDATE DATE

2024-11-23T22:29:41.207000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-20-269	date:	2020-03-05T00:00:00
db:	VULHUB	id:	VHN-181252	date:	2020-03-05T00:00:00
db:	JVNDB	id:	JVNDB-2020-002443	date:	2020-03-16T00:00:00
db:	CNNVD	id:	CNNVD-202003-179	date:	2020-03-13T00:00:00
db:	NVD	id:	CVE-2020-3127	date:	2024-11-21T05:30:22.907

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-20-269	date:	2020-03-05T00:00:00
db:	VULHUB	id:	VHN-181252	date:	2020-03-04T00:00:00
db:	JVNDB	id:	JVNDB-2020-002443	date:	2020-03-16T00:00:00
db:	CNNVD	id:	CNNVD-202003-179	date:	2020-03-04T00:00:00
db:	NVD	id:	CVE-2020-3127	date:	2020-03-04T19:15:12.353