CVE-2012-1337

Name: CVE-2012-1337
Creator: NVD / NIST
Published: 2012-04-05T13:25:16.24+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 23.88%

Last modified Jun 16, 2026

CVE-2012-1337 is a vulnerability of currently unknown severity. Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1335 and CVE-2012-1336.. EPSS estimates a 23.88% chance of exploitation in the next 30 days.

Description

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L through SP11 EP26, T27 LB through SP21 EP10, T27 LC before SP25 EP10, and T27 LD before SP32 CP1 allows remote attackers to execute arbitrary code via a crafted WRF file, a different vulnerability than CVE-2012-1335 and CVE-2012-1336.

Metrics

EPSS Probability

23.88%

97.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Cisco	Webex Recording Format Player	>= 27.11.0, <= 27.11.26
Cisco	Webex Recording Format Player	>= 27.21.0, <= 27.21.10
Cisco	Webex Recording Format Player	>= 27.25.0, < 27.25.10
Cisco	Webex Recording Format Player	>= 27.32.0, < 27.32.1

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webexVendor Advisory
http://www.securitytracker.com/id?1026888Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/74606VDB Entry
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120404-webexVendor Advisory
http://www.securitytracker.com/id?1026888Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/74606VDB Entry

Timeline

Published: Apr 5, 2012
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2012-1337?

How severe is CVE-2012-1337?

Severity scoring for CVE-2012-1337 is pending analysis. The EPSS model estimates a 23.88% probability of exploitation in the next 30 days.

How do I fix CVE-2012-1337?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-1337?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST