Version information for the Cisco WebEx meeting client on Mac platforms can be viewed by choosing Meeting Center > About Cisco WebEx Meeting Center. Version information for the Cisco WebEx meeting client on Windows and Linux platforms can be viewed by choosing Help > About Cisco WebEx Meeting Center. See the “Fixed Software” section for details.Īlternatively, version information of the Cisco WebEx meeting client can be accessed from within the Cisco WebEx meeting client. The version of the WebEx client build will be displayed on the right side of the page under About Meeting Center. To determine whether a Cisco WebEx meeting site is running an affected version of the WebEx client build, users can log in to their Cisco WebEx meeting site and go to the Support > Downloads section. Cisco WebEx Meeting Server builds prior to 2.7MR3.Cisco WebEx Meetings with client builds prior to T32.7.Cisco WebEx Business Suite (WBS32) client builds prior to T32.7.Cisco WebEx Business Suite (WBS31) client builds prior to T31.20.Cisco WebEx Business Suite (WBS30) client builds prior to T30.20.The following client builds of Cisco WebEx Business Suite (WBS30, WBS 31, and WBS32), Cisco WebEx Meetings, and Cisco WebEx Meetings Server are affected by at least one of the vulnerabilities described in this advisory: The vulnerabilities disclosed in this advisory affect the Cisco WebEx ARF Player and the Cisco WebEx WRF Player. This advisory is available at the following link:
There are no workarounds that address these vulnerabilities. The player can be automatically installed when the user accesses a recording file that is hosted on a WebEx server.Ĭisco has updated affected versions of the Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF and WRF Players to address these vulnerabilities.
The Cisco WebEx players are applications that are used to play back WebEx meeting recordings that have been recorded by an online meeting attendee. Exploitation of these vulnerabilities could cause an affected player to crash and, in some cases, could allow arbitrary code execution on the system of a targeted user. A remote attacker could exploit these vulnerabilities by providing a user with a malicious ARF or WRF file via email or URL and convincing the user to launch the file. Multiple vulnerabilities exist in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files.
0 kommentar(er)
