AnsweredAssumed Answered

I got this QIDs 370468 and 370286 regarding Chrome WebEx vulnerability- what sort of mitigating controls could we implement on this one? THANKS!

Question asked by Rommel Abrau on Dec 4, 2019
Latest reply on Dec 5, 2019 by Rommel Abrau

Like • Show 0 Likes0
Comment • 4

A vulnerability in Cisco WebEx browser extensions can allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meetings Server and Cisco WebEx Meetings Center when they are running on Microsoft Windows. The vulnerability is due to a design defect in an application programing interface (API) response parser within the plugin. Affected Software: Cisco WebEx browser extension prior to 1.0.7

No one else has this question

Outcomes

Robert Dell'Immagine

Dec 4, 2019 11:37 PM

In case you haven't seen this, here is the bulletin from Cisco:

Cisco WebEx Browser Extension Remote Code Execution Vulnerability

3 people found this helpful

Actions

Rommel Abrau @ Robert Dell'Immagine on Dec 5, 2019 6:30 AM

Yes, I have seen this one Robert. Other than our controls on our browser, do you have any suggestion. As there are no exe or msi for this one, it requires our users to open Chrome/open WebEx Meeting in Chrome once which updates the latest files on their profile.

1 person found this helpful

Actions

Christopher McKay Dec 5, 2019 3:34 AM

Hey,

As far as specific mitigating controls for vulnerabilities that "execute arbitrary code with the privileges of the affected browser on an affected system" have you implemented controls in your environment to ensure that your web browsers are running with the minimum required privilege level?

Christopher

2 people found this helpful

Actions

Rommel Abrau @ Christopher McKay on Dec 5, 2019 6:08 AM

Yes, Christopher we do have controls implemented. Don't we have other workarounds? As it has taken too long to remediate this one. Thanks, I truly appreciate your response.

1 person found this helpful

Actions

4 Replies

Robert Dell'Immagine Dec 4, 2019 11:37 PM
Mark Correct
Correct Answer
In case you haven't seen this, here is the bulletin from Cisco:
Cisco WebEx Browser Extension Remote Code Execution Vulnerability
3 people found this helpful
Like • Show 2 Likes2
Actions
- Rommel Abrau @ Robert Dell'Immagine on Dec 5, 2019 6:30 AM
  Mark Correct
  Correct Answer
  Yes, I have seen this one Robert. Other than our controls on our browser, do you have any suggestion. As there are no exe or msi for this one, it requires our users to open Chrome/open WebEx Meeting in Chrome once which updates the latest files on their profile.
  1 person found this helpful
  Like • Show 1 Like1
  Actions
Christopher McKay Dec 5, 2019 3:34 AM
Mark Correct
Correct Answer
Hey,

As far as specific mitigating controls for vulnerabilities that "execute arbitrary code with the privileges of the affected browser on an affected system" have you implemented controls in your environment to ensure that your web browsers are running with the minimum required privilege level?

Christopher
2 people found this helpful
Like • Show 2 Likes2
Actions
- Rommel Abrau @ Christopher McKay on Dec 5, 2019 6:08 AM
  Mark Correct
  Correct Answer
  Yes, Christopher we do have controls implemented. Don't we have other workarounds? As it has taken too long to remediate this one. Thanks, I truly appreciate your response.
  1 person found this helpful
  Like • Show 1 Like1
  Actions

I got this QIDs 370468 and 370286 regarding Chrome WebEx vulnerability- what sort of mitigating controls could we implement on this one? THANKS!

Outcomes

Related Content

Recommended Content