9.3 - cisco-sa-20170124-webex

Executive Summary

Summary
Title	Cisco WebEx Browser Extension Remote Code Execution Vulnerability

Informations
Name	cisco-sa-20170124-webex	First vendor Publication	2017-01-24
Vendor	Cisco	Last vendor Modification	2017-01-22
Severity (Vendor)	N/A	Revision	1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability in the Cisco WebEx browser extensions provided by Cisco WebEx Meetings Server and Cisco WebEx Meetings Center could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system.

The vulnerability is due to the use of a crafted pattern by the affected software. An attacker could exploit this vulnerability by directing a user to a web page that contains the crafted pattern and starting a WebEx session. The WebEx session could allow the attacker to execute arbitrary code on the affected system, which could be used to conduct further attacks.

Cisco has begun to release software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170124-webex

BEGIN PGP SIGNATURE

iQIVAwUBWIeo6q89gD3EAJB5AQK3ow//aUWUWxVoRUzo9hxvdE0dquUjKAv7/suF XG8uxNPpZ9xfSs988E07Kt6uF5sJu4xl8YaqYWj0L79jxs4o8fUmmzyFInJMZhOd 8swAjuz6ihVTe+Nj6ahcxEoRRbkNYt77YZAg4m8ngM/5r+QSZRSw4nVpOvLqP9Wv KBjbDVhVMjJ+eGBOEJhfCD8fdXWVIe6RvP5jj7RjaCYWl9yrSFsfO1ccysoCInNk aXKbEwRXeVc3CJHqzg0GUXXnJLZ0jQv81bAGaieCt8eFTjbyK3zghHOxhFK+IUJl ol8ARSbrUpBL5/wSodhtHe9+IzUjiYIMnWiJBLrRWHSi4IXuN8PYOG9cTIaFVEGO QIf83/FDVe+Y5WdfvMwQDDOnQFe/X47GllPoiG4aPouuc7XcbbdZZxZm2kjsdhhz 85sh+VX8giL4u2OOqLSDlLuThqwMSt+1jeq7El/mm7LemNI2y69JUORthcQvOBXE JGiaOfJKc/hJIypyWFzB/eaCbv1cdcny6hAtDIXhyW6AgcNBoTYAIyRiowrgtzWB 3z9yAlFklWKqD6x1zHXEPn8HYSl97oaabXG1yq3quEMSufXT9YsAzElYPBLxUs3B B7z9mpLgdp+5/rdnpDla4ToNYYb/21f2WqDRHAS2FKPhvhAEwt8fBFiulWKBXQaz 3Fpq3hxXY4s= =dTTj END PGP SIGNATURE _______________________________________________ cust-security-announce mailing list cust-security-announce@cisco.com To unsubscribe, send the command "unsubscribe" in the subject of your message to cust-security-announce-leave@cisco.com

Original Source

Url : http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco (...)

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

Type	Description	Count
Application	Cisco Activetouch General Plugin Container cpe:2.3:a:cisco:activetouch_general_plugin_container:105:::::firefox::	1
Application	Cisco Download Manager cpe:2.3:a:cisco:download_manager:2.1.0.9:::::internet_explorer::	1
Application	Cisco Webex Meeting Center cpe:2.3:a:cisco:webex_meeting_center:2.7_mr2:::::::* cpe:2.3:a:cisco:webex_meeting_center:2.7_mr1:p1:::::: cpe:2.3:a:cisco:webex_meeting_center:2.7_mr1:::::::* cpe:2.3:a:cisco:webex_meeting_center:2.7_base:::::::* cpe:2.3:a:cisco:webex_meeting_center:2.6_mr3:p1:::::: cpe:2.3:a:cisco:webex_meeting_center:2.6_mr3:::::::* cpe:2.3:a:cisco:webex_meeting_center:2.6_mr2:p1:::::: cpe:2.3:a:cisco:webex_meeting_center:2.6_mr2:::::::* cpe:2.3:a:cisco:webex_meeting_center:2.6_mr1:p1:::::: cpe:2.3:a:cisco:webex_meeting_center:2.6_mr1:::::::* cpe:2.3:a:cisco:webex_meeting_center:2.6_base:::::::* cpe:2.3:a:cisco:webex_meeting_center:t31_base:::::::* cpe:2.3:a:cisco:webex_meeting_center:t30_base:::::::* cpe:2.3:a:cisco:webex_meeting_center:t29_base:::::::*	14
Application	Cisco Webex Meetings Server cpe:2.3:a:cisco:webex_meetings_server:2.7_mr2:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.7_mr1:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.7_mr1:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.7_base:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.6_mr3:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.6_mr3:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.6_mr2:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.6_mr2:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.6_mr1:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.6_mr1:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.6_base:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_mr6:p2:::::: cpe:2.3:a:cisco:webex_meetings_server:2.5_mr6:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.5_mr6:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_mr6:p3:::::: cpe:2.3:a:cisco:webex_meetings_server:2.5_mr5:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.5_mr5:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_mr4:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_mr3:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_mr2:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.5_mr2:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_mr1:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.5_base:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr9:p3:::::: cpe:2.3:a:cisco:webex_meetings_server:2.0_mr9:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr9:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.0_mr9:p2:::::: cpe:2.3:a:cisco:webex_meetings_server:2.0_mr8:p1:::::: cpe:2.3:a:cisco:webex_meetings_server:2.0_mr8:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr7:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr6:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr5:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr4:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr3:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_mr2:::::::* cpe:2.3:a:cisco:webex_meetings_server:2.0_base:::::::*	36

SAINT Exploits

Description	Link
WebEx browser extension command execution	More info here

Snort® IPS/IDS

Date	Description
2017-01-27	Cisco Webex explicit use of web plugin detected RuleID : 41409-community - Revision : 7 - Type : POLICY-OTHER
2017-02-25	Cisco Webex explicit use of web plugin detected RuleID : 41409 - Revision : 6 - Type : POLICY-OTHER
2017-02-25	Cisco WebEx extension command execution attempt RuleID : 41408 - Revision : 3 - Type : BROWSER-OTHER
2017-02-25	Cisco WebEx extension command execution attempt RuleID : 41407 - Revision : 3 - Type : BROWSER-OTHER

Nessus® Vulnerability Scanner

Date	Description
2017-01-31	Name : A browser extension installed on the remote host is affected by a remote code... File : cisco_webex_extension_rce_firefox.nasl - Type : ACT_GATHER_INFO
2017-01-31	Name : A browser extension installed on the remote host is affected by a remote code... File : cisco_webex_extension_rce_ie.nasl - Type : ACT_GATHER_INFO
2017-01-25	Name : A browser extension installed on the remote host is affected by a remote code... File : cisco_webex_extension_rce.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2017-02-25 05:23:58	Multiple Updates
2017-02-01 17:25:56	Multiple Updates
2017-02-01 13:25:46	Multiple Updates
2017-01-26 13:24:35	Multiple Updates
2017-01-24 21:22:42	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	52
Saint Exploit(s)	1
Snort® Rule(s)	4
Nessus® Exploit(s)	3

	Related
9.3	VU#909240
8.8	CVE-2017-3823
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)

9.3 - cisco-sa-20170124-webex

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

SAINT Exploits

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU