====================================================================


                             CERT-Renater

                 Note d'Information No. 2018/VULN183
_____________________________________________________________________

DATE                : 03/05/2018

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Cisco WebEx Network Recording
                         Player for Advanced Recording Format.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-war
_____________________________________________________________________

Cisco Security Advisory: Cisco WebEx Advanced Recording Format Remote
Code Execution Vulnerability

Advisory ID: cisco-sa-20180502-war

Revision: 1.0

For Public Release: 2018 May 2 16:00 GMT

Last Updated: 2018 May 2 16:00 GMT

CVE ID(s): CVE-2018-0264

CVSS Score v(3): 9.6 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary

=======

A vulnerability in the Cisco WebEx Network Recording Player for Advanced
Recording Format (ARF) files could allow an unauthenticated, remote
attacker to execute arbitrary code on the system of a targeted user.

An attacker could exploit this vulnerability by sending the user a link
or email attachment with a malicious ARF file and persuading the user to
follow the link or open the file. Successful exploitation could allow
the attacker to execute arbitrary code on the user’s system.


The Cisco WebEx players are applications that are used to play back
WebEx meeting recordings that have been recorded by an online meeting
attendee. The player can be installed automatically when a user accesses
a recording file that is hosted on a WebEx server.

Cisco has updated affected versions of Cisco WebEx Business Suite
meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server,

and the Cisco WebEx ARF Player to address this vulnerability. There are
no workarounds that address this vulnerability.
  This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-war
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-war"]

==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================