Guest

Preview Tool

Cisco Bug: CSCuq41949 - Jabber for Mac logs webex EPW in plain text.

Last Modified

Nov 28, 2017

Products (1)

  • Cisco Jabber for Mac

Known Affected Releases

10.5(0)

Description (partial)

Symptom:
A vulnerability in the logging functionality of Cisco Jabber for Mac could allow an unauthenticated, local attacker to retrieve sensitive
information.

The vulnerability is due to plaintext logging for some sensitive data. An attacker could exploit this vulnerability by having local access to the
filesystem of the Mac running an affected version of software.

Conditions:
Access to log files created by an effected version of Jabber for Mac
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.