VDB
CVE-2016-1464
CVE-2016-1464
PUBLISHED
CVSS 7.800000190734863 HIGH
Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to execute arbitrary code via a crafted file, aka Bug ID CSCva09375.
EPSS 4.48% · 89.3th percentile
Risk Scores
CVSS 3.0
7.800000190734863
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
4.48%
89.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| cisco | webex_wrf_player_t29 | sp10_base |
| Cisco | N/A |
Exploit Intelligence
- CIRCL exploited: CVE-2016-1464 (circl-sighting)
- 20160831 Cisco WebEx Meetings Player Arbitrary Code Execution Vulnerability (circl)
- 1036712 (circl)
- 92708 (circl)
- 40508 (cve.org)
- Cisco Webex Player T29.10 - '.WRF' Use-After-Free Memory Corruption (0day-today)
- Cisco Webex Player T29.10 - '.WRF' Use-After-Free Memory Corruption (0day-today)
Timeline
- Aug 31, 2016 CVE Published
- Oct 12, 2016 PoC Published
- Oct 12, 2016 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Jul 15, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
References
- 20160831 Cisco WebEx Meetings Player Arbitrary Code Execution Vulnerability vendor-advisory
- 1036712 vdb
- 92708 vdb
- 40508 exploit
- https://nvd.nist.gov/vuln/detail/CVE-2016-1464 advisory
- https://www.exploit-db.com/exploits/40508 url