Cisco Bug: CSCvt33084 - Cisco Webex Meetings Client for Windows Unsafe Search Path
May 29, 2020
- Cisco Webex Meetings Online
Known Affected Releases
Symptom: Cisco Webex Meetings Client for Windows unsafely searches directories for files upon execution. A privileged user who could place an executable in the path of the Cisco Webex Meetings Client for Windows could cause the application to execute that planted binary. In the absence of writable directories in the application directory of the Cisco Webex Meetings Client for Windows, only a user with Administrator privileges on the system could leverage this issue. Conditions: Device running with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases