CVE-2017-3823: Buffer Overflow
First published: Wed Feb 01 2017(Updated: )
An issue was discovered in the Cisco WebEx Extension before 1.0.7 on Google Chrome, the ActiveTouch General Plugin Container before 106 on Mozilla Firefox, the GpcContainer Class ActiveX control plugin before 10031.6.2017.0126 on Internet Explorer, and the Download Manager ActiveX control plugin before 2.1.0.10 on Internet Explorer. A vulnerability in these Cisco WebEx browser extensions could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meetings Server and Cisco WebEx Centers (Meeting Center, Event Center, Training Center, and Support Center) when they are running on Microsoft Windows. The vulnerability is a design defect in an application programing interface (API) response parser within the extension. An attacker that can convince an affected user to visit an attacker-controlled web page or follow an attacker-supplied link with an affected browser could exploit the vulnerability. If successful, the attacker could execute arbitrary code with the privileges of the affected browser.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Active Touch General Plugin Container | =105 | |
| Cisco Download Manager | =2.1.0.9 | |
| Cisco Gpccontainer Class | <=10031.6.2017.0125 | |
| Cisco Webex Platform | <=1.0.6 | |
| Cisco Webex Meetings Server Software | =2.0_base | |
| Cisco Webex Meetings Server Software | =2.0_mr2 | |
| Cisco Webex Meetings Server Software | =2.0_mr3 | |
| Cisco Webex Meetings Server Software | =2.0_mr4 | |
| Cisco Webex Meetings Server Software | =2.0_mr5 | |
| Cisco Webex Meetings Server Software | =2.0_mr6 | |
| Cisco Webex Meetings Server Software | =2.0_mr7 | |
| Cisco Webex Meetings Server Software | =2.0_mr8 | |
| Cisco Webex Meetings Server Software | =2.0_mr8-p1 | |
| Cisco Webex Meetings Server Software | =2.0_mr9 | |
| Cisco Webex Meetings Server Software | =2.0_mr9-p1 | |
| Cisco Webex Meetings Server Software | =2.0_mr9-p2 | |
| Cisco Webex Meetings Server Software | =2.0_mr9-p3 | |
| Cisco Webex Meetings Server Software | =2.5_base | |
| Cisco Webex Meetings Server Software | =2.5_mr1 | |
| Cisco Webex Meetings Server Software | =2.5_mr2 | |
| Cisco Webex Meetings Server Software | =2.5_mr2-p1 | |
| Cisco Webex Meetings Server Software | =2.5_mr3 | |
| Cisco Webex Meetings Server Software | =2.5_mr4 | |
| Cisco Webex Meetings Server Software | =2.5_mr5 | |
| Cisco Webex Meetings Server Software | =2.5_mr5-p1 | |
| Cisco Webex Meetings Server Software | =2.5_mr6 | |
| Cisco Webex Meetings Server Software | =2.5_mr6-p1 | |
| Cisco Webex Meetings Server Software | =2.5_mr6-p2 | |
| Cisco Webex Meetings Server Software | =2.5_mr6-p3 | |
| Cisco Webex Meetings Server Software | =2.6_base | |
| Cisco Webex Meetings Server Software | =2.6_mr1 | |
| Cisco Webex Meetings Server Software | =2.6_mr1-p1 | |
| Cisco Webex Meetings Server Software | =2.6_mr2 | |
| Cisco Webex Meetings Server Software | =2.6_mr2-p1 | |
| Cisco Webex Meetings Server Software | =2.6_mr3 | |
| Cisco Webex Meetings Server Software | =2.6_mr3-p1 | |
| Cisco Webex Meetings Server Software | =2.7_base | |
| Cisco Webex Meetings Server Software | =2.7_mr1 | |
| Cisco Webex Meetings Server Software | =2.7_mr1-p1 | |
| Cisco Webex Meetings Server Software | =2.7_mr2 | |
| Cisco WebEx Meeting Center | =2.6_base | |
| Cisco WebEx Meeting Center | =2.6_mr1 | |
| Cisco WebEx Meeting Center | =2.6_mr1-p1 | |
| Cisco WebEx Meeting Center | =2.6_mr2 | |
| Cisco WebEx Meeting Center | =2.6_mr2-p1 | |
| Cisco WebEx Meeting Center | =2.6_mr3 | |
| Cisco WebEx Meeting Center | =2.6_mr3-p1 | |
| Cisco WebEx Meeting Center | =2.7_base | |
| Cisco WebEx Meeting Center | =2.7_mr1 | |
| Cisco WebEx Meeting Center | =2.7_mr1-p1 | |
| Cisco WebEx Meeting Center | =2.7_mr2 | |
| Cisco WebEx Meeting Center | =t29_base | |
| Cisco WebEx Meeting Center | =t30_base | |
| Cisco WebEx Meeting Center | =t31_base |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/95737
- http://www.securitytracker.com/id/1037680
- https://0patch.blogspot.com/2017/01/micropatching-remote-code-execution-in.html
- https://blog.filippo.io/webex-extension-vulnerability/
- https://bugs.chromium.org/p/project-zero/issues/detail?id=1096
- https://bugs.chromium.org/p/project-zero/issues/detail?id=1100
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170124-webex
- https://www.kb.cert.org/vuls/id/909240
Frequently Asked Questions
What is the severity of CVE-2017-3823?
CVE-2017-3823 has been classified with a severity rating that requires urgent attention due to the potential for remote code execution.
How do I fix CVE-2017-3823?
To fix CVE-2017-3823, update the affected Cisco products to the latest available versions.
What products are affected by CVE-2017-3823?
CVE-2017-3823 affects Cisco WebEx Extension, ActiveTouch General Plugin Container, GpcContainer Class ActiveX control, and Download Manager ActiveX control.
Is there a workaround for CVE-2017-3823?
Currently, there are no effective workarounds for CVE-2017-3823 other than applying the software updates.
What happens if CVE-2017-3823 is exploited?
Exploitation of CVE-2017-3823 could allow unauthorized remote execution of code on affected systems.
- agent/references
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/severity
- agent/author
- agent/weakness
- agent/tags
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco active touch general plugin container
- version/cisco active touch general plugin container/105
- canonical/cisco download manager
- version/cisco download manager/2.1.0.9
- canonical/cisco gpccontainer class
- version/cisco gpccontainer class/10031.6.2017.0125
- canonical/cisco webex platform
- version/cisco webex platform/1.0.6
- canonical/cisco webex meetings server software
- version/cisco webex meetings server software/2.0_base
- version/cisco webex meetings server software/2.0_mr2
- version/cisco webex meetings server software/2.0_mr3
- version/cisco webex meetings server software/2.0_mr4
- version/cisco webex meetings server software/2.0_mr5
- version/cisco webex meetings server software/2.0_mr6
- version/cisco webex meetings server software/2.0_mr7
- version/cisco webex meetings server software/2.0_mr8
- version/cisco webex meetings server software/2.0_mr8-p1
- version/cisco webex meetings server software/2.0_mr9
- version/cisco webex meetings server software/2.0_mr9-p1
- version/cisco webex meetings server software/2.0_mr9-p2
- version/cisco webex meetings server software/2.0_mr9-p3
- version/cisco webex meetings server software/2.5_base
- version/cisco webex meetings server software/2.5_mr1
- version/cisco webex meetings server software/2.5_mr2
- version/cisco webex meetings server software/2.5_mr2-p1
- version/cisco webex meetings server software/2.5_mr3
- version/cisco webex meetings server software/2.5_mr4
- version/cisco webex meetings server software/2.5_mr5
- version/cisco webex meetings server software/2.5_mr5-p1
- version/cisco webex meetings server software/2.5_mr6
- version/cisco webex meetings server software/2.5_mr6-p1
- version/cisco webex meetings server software/2.5_mr6-p2
- version/cisco webex meetings server software/2.5_mr6-p3
- version/cisco webex meetings server software/2.6_base
- version/cisco webex meetings server software/2.6_mr1
- version/cisco webex meetings server software/2.6_mr1-p1
- version/cisco webex meetings server software/2.6_mr2
- version/cisco webex meetings server software/2.6_mr2-p1
- version/cisco webex meetings server software/2.6_mr3
- version/cisco webex meetings server software/2.6_mr3-p1
- version/cisco webex meetings server software/2.7_base
- version/cisco webex meetings server software/2.7_mr1
- version/cisco webex meetings server software/2.7_mr1-p1
- version/cisco webex meetings server software/2.7_mr2
- canonical/cisco webex meeting center
- version/cisco webex meeting center/2.6_base
- version/cisco webex meeting center/2.6_mr1
- version/cisco webex meeting center/2.6_mr1-p1
- version/cisco webex meeting center/2.6_mr2
- version/cisco webex meeting center/2.6_mr2-p1
- version/cisco webex meeting center/2.6_mr3
- version/cisco webex meeting center/2.6_mr3-p1
- version/cisco webex meeting center/2.7_base
- version/cisco webex meeting center/2.7_mr1
- version/cisco webex meeting center/2.7_mr1-p1
- version/cisco webex meeting center/2.7_mr2
- version/cisco webex meeting center/t29_base
- version/cisco webex meeting center/t30_base
- version/cisco webex meeting center/t31_base