Security News > 2020 > November > Cisco Webex Vulnerability Allows Ghost Access to Meetings

Cisco Webex Vulnerability Allows Ghost Access to Meetings
2020-11-19 11:54

Identified by IBM's security researchers, the Webex flaws could allow attackers to join meetings as ghosts, remain in the meeting as a ghost after being expelled, and access information on meeting attendees.

Tracked as CVE-2020-3419, the first of the issues impacts both Webex Meetings and Webex Meetings Server and is the result of "Improper handling of authentication tokens by a vulnerable Webex site."

An attacker with access to join a meeting could abuse the flaw by sending crafted requests to a vulnerable Webex Meetings site.

Webex Meetings 40.10.9 and earlier for iOS and Android are affected too, as well as Webex Meetings Server 3.0MR Security Patch 4 and earlier and 4.0MR3 Security Patch 3 and earlier.

"These vulnerabilities work by exploiting the handshake process that Webex uses to establish a connection between meeting participants. [] A malicious actor can become a ghost by manipulating [] messages during the handshake process between the Webex client application and the Webex server back-end to join or stay in a meeting without being seen by others," IBM explains.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/K2o34T-aTIM/cisco-webex-vulnerability-allows-ghost-access-meetings

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2020-11-18 CVE-2020-3419 Improper Control of Dynamically-Managed Code Resources vulnerability in Cisco Webex Meetings Server
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex session without appearing on the participant list.
network
low complexity
cisco CWE-913
critical
9.1

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Cisco 2046 21 1773 1669 288 3751
Ghost 2 0 12 5 4 21