CVE-2009-2879

N/A Unknown

Published: December 18, 2009 Modified: April 23, 2026

Description

Heap-based buffer overflow in atas32.dll in the Cisco WebEx WRF Player 26.x before 26.49.32 (aka T26SP49EP32) for Windows, 27.x before 27.10.x (aka T27SP10) for Windows, 26.x before 26.49.35 for Mac OS X and Linux, and 27.x before 27.11.8 for Mac OS X and Linux allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted WebEx Recording Format (WRF) file, a different vulnerability than CVE-2009-2876 and CVE-2009-2878.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/37810

Source: psirt@cisco.com

Vendor Advisory

http://securitytracker.com/id?1023360

Source: psirt@cisco.com

http://tools.cisco.com/security/center/viewAlert.x?alertId=19499

Source: psirt@cisco.com

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22660&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: psirt@cisco.com

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22661&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: psirt@cisco.com

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22662&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: psirt@cisco.com

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22663&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: psirt@cisco.com

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22799&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: psirt@cisco.com

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=23040&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: psirt@cisco.com

Patch Vendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b0a577.shtml

Source: psirt@cisco.com

Patch Vendor Advisory

http://www.fortiguard.com/advisory/FGA-2009-48.html

Source: psirt@cisco.com

http://www.fortiguard.com/encyclopedia/vulnerability/cisco.webex.player.atas32.heap.overflow.html

Source: psirt@cisco.com

http://www.osvdb.org/61129

Source: psirt@cisco.com

http://www.securityfocus.com/bid/37352

Source: psirt@cisco.com

http://www.vupen.com/english/advisories/2009/3574

Source: psirt@cisco.com

Patch Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/54841

Source: psirt@cisco.com

http://secunia.com/advisories/37810

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1023360

Source: af854a3a-2127-422b-91ae-364da2661108

http://tools.cisco.com/security/center/viewAlert.x?alertId=19499

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22660&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22661&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22662&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22663&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=22799&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://tools.cisco.com/security/center/viewIpsSignature.x?signatureId=23040&signatureSubId=0&softwareVersion=6.0&releaseVersion=S456

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b0a577.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.fortiguard.com/advisory/FGA-2009-48.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.fortiguard.com/encyclopedia/vulnerability/cisco.webex.player.atas32.heap.overflow.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/61129

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/37352

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/3574

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/54841

Source: af854a3a-2127-422b-91ae-364da2661108

32 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

2.5%

85th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

cisco

Related CVEs

CVE-2026-7041 3.7

CVE-2026-7039 7.8

CVE-2026-7038 3.3

CVE-2026-7037 9.8

CVE-2026-7036 7.3