Cisco WebEx Player is a video conferencing tool that enables users to play, edit or convert .wrf and .arf files, which are WebEx recordings. The tool allows users to watch recordings made by WebEx Recorder, view and share presentations and graphics, and play multimedia files. The player also supports video playback, screenshot extraction, analytics, and more.

Cisco WebEx Player

Cisco WebEx Network Recording Player is a software application designed to play back WebEx meeting recordings that have been saved to your computer. It specifically supports files in the Advanced Recording Format (ARF), a file format that WebEx uses to store recorded data. The player includes features like pause, stop, move back and forward, adjust volume, and includes settings for playback speed.

Cisco WebEx Network Recording Player

A vulnerability in Cisco Webex Network Recording Player and Cisco Webex Player for Microsoft Windows could allow an attacker to cause a process crash resulting in a Denial of service (DoS) condition for the player application on an affected system. The vulnerability exists due to insufficient validation of certain elements with a Webex recording stored in either the Advanced Recording Format (ARF) or the Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to cause the Webex player application to crash when trying to view the malicious file.

CVE-2020-3321:
Cisco WebEx Player vulnerability analysis and mitigation

Overview

Technical details

Impact

Mitigation and workarounds

Additional resources

3.3

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2020-3321: Cisco WebEx Player vulnerability analysis and mitigation