Cisco Webex Network Recording Player and Cisco Webex Player DLL Injection (cisco-sa-webex-dll-inject-XNmcSGTU)

high Nessus Plugin ID 150847

Synopsis

The remote device is missing a vendor-supplied security patch

Description

According to its self-reported version, Cisco Webex Network Recording Player is affected by an dll injection vulnerability due to incorrect handling of directory paths at run time. An authenticated, local attacker can exploit this, by inserting a configuration file in a specific path in the system, to execute arbitrary code with the privileges of another user account.

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to the relevant fixed version referenced in Cisco bug IDs CSCvw48667, CSCvw79311, CSCvw79321

See Also

http://www.nessus.org/u?789eac9e

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw48667

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw79311

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw79321

Plugin Details

Severity: High

ID: 150847

File Name: cisco-sa-webex-dll-inject-XNmcSGTU_webex-player.nasl

Version: 1.2

Type: local

Agent: windows

Family: Windows

Published: 6/17/2021

Updated: 6/21/2021

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Temporal Score: 5.1

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2021-1536

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cisco:webex_advanced_recording_format_player

Required KB Items: installed_sw/WebEx ARF/WRF Player

Exploit Ease: No known exploits are available

Patch Publication Date: 6/2/2021

Vulnerability Publication Date: 6/2/2021

Reference Information

CVE: CVE-2021-1536

CWE: 427

CISCO-SA: cisco-sa-webex-dll-inject-XNmcSGTU

IAVA: 2021-A-0282

CISCO-BUG-ID: CSCvw48667, CSCvw79311, CSCvw79321