ledgasra.blogg.se - Cisco webex recorder and player

#Cisco webex recorder and player install
#Cisco webex recorder and player code
#Cisco webex recorder and player windows

An attacker could exploit the vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file.

Multiple vulnerabilities exist due to an insufficient validation of values within Webex recording files formatted as either Advanced Recording Format (ARF) or Webex Recording Format (WRF).

Details of the vulnerabilities are as follows:

#Cisco webex recorder and player code

Technical Summary:Multiple vulnerabilities have been discovered in Cisco Webex Network Recording Player and Cisco Webex Player that could allow for arbitrary code execution with the privileges of the targeted user. If you and/or your business utilize any of the Cisco Webex Player or Cisco Webex Network Recording Player versions mentioned above, you will need to apply appropriate updates provided by Cisco to vulnerable systems immediately following proper testing.

Large and medium business entities: High.

Large and medium government entities: High.

#Cisco webex recorder and player windows

Cisco Webex Network Recording Player versions prior to 41.4 on Windows and MacOS (CVE-2021-1502).

Cisco Webex Player versions prior to 41.4 on Windows and MacOS (CVE-2021-1502).

Threat Intelligence:There are currently no reports that these vulnerabilities are being exploited in the wild.

Read the Cisco's original Security Advisory. Users configured to have fewer privileges on the system could be less impacted than those who operate with elevated privileges.

#Cisco webex recorder and player install

Successful exploitation of the most severe of these vulnerabilities could allow an unauthenticated, remote attacker to execute code on the affected systems with the privileges of the targeted user.ĭepending on the privileges associated with the targeted user, an attacker could then install programs view, change, or delete data or create new accounts with full user rights. The Webex Player is an application that is used to play back and edit recorded Webex meeting files. The Webex Network Recording Player is an application that is used to convert Webex recording files to standard formats such as Windows Media Video, Flash or MP4. The Webex meeting service is a hosted multimedia conferencing solution that is managed and maintained by Cisco Webex. What It Is:Multiple vulnerabilities have been discovered in Cisco Webex Network Recording Player and Cisco Webex Player that could allow for arbitrary code execution. The vulnerabilities could allow an attacker to execute arbitrary code, which could potentially lead to a breach. A cybersecurity alert was issued today, June 3, 2021, regarding multiple vulnerabilities in Cisco Webex Network Recording Player and Cisco Webex Player.