Guest

Preview Tool

Cisco Bug: CSCuj81756 - End arbitrary meetings in session

Last Modified

Jun 29, 2018

Products (1)

  • Cisco Webex Meetings Server

Known Affected Releases

1.5

Description (partial)

Symptoms:
A vulnerability in the meeting ID generation of Cisco WebEx Meetings Server (CWMS) may allow an authenticated remote attacker to end meetings 
that are in progress.

The vulnerability is due to the use of predictable meeting ID parameters for meetings. An attacker could exploit this vulnerability to attempt to
end 
arbitrary meetings by specifying the predictable meeting IDs that are in progress. 

Conditions:
An affected device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.