Cisco released patches for multiple vulnerabilities in its WebEx Recording Format and Advanced Re-coding Format Players to address vulnerabilities.Failures can cause the failure of an affected player and in some cases allow the execution of arbitrary code in the system if a remote attacker sends a malicious ARF or WRF file via email or URL and convinces the user to launch the file, according to One last notice from Cisco updated on November 30, 2017.
The patch has a "Critical" severity rating and addresses CVE-2017-12367, CVE-2017-12368, CVE-2017-12369, CVE-2017-12370, CVE-2017-12371 and CVE-2017-12372.
"The vulnerabilities revealed in this notice affect the Cisco WebEx ARF Player and the Cisco WebEx WRF Player," the notice said. "The following client versions of Cisco WebEx Business Suite (WBS30, WBS 31 and WBS32), Cisco WebEx Meetings and Cisco WebEx Meetings Server are affected by at least one of the vulnerabilities described in this notice." 200-150 Practice Test Dumps
However, it is possible to completely remove all WebEx software from a system using the Meeting Services Removal Tool (for Microsoft Windows users) or the Mac WebEx Meeting Application Uninstaller (for Apple Mac OS X users).
