• English
  • Japanese

【WebEx】Multiple Vulnerabilities in Cisco WebEx Recording Format and Advanced Recording Format Players

Multiple vulnerabilities exist in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) and WebEx Recording Format (WRF) files. A remote attacker could exploit these vulnerabilities by providing a user with a malicious ARF or WRF file via email or URL and convincing the user to launch the file. Exploitation of these vulnerabilities could cause an affected player to crash and, in some cases, could allow arbitrary code execution on the system of a targeted user.

Current version of WebEx is not affected by this vulnerability. But if you install the record player in the past, it may be affected.  In that case, please do the following.

  1. Login to WebEx
  2. [Meeting Center] - [Support] - [Downloads] - [Recorder and Players] - [Recording and Playback]
  3. Download and Install the latest player from [WebEx Player and Network Recording Player]

See below for details.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-webex-players

Last-Modified: December 4, 2017

The content ends at this position.