Categories
Anti-malware

Cisco plugs command-injection hole in WebEx Chrome, Firefox plugins

Make sure you’ve updated if you’re using Windows

By Shaun Nichols in San Francisco 17 Jul 2017
 

 

Cisco has patched its Chrome and Firefox WebEx plugins to kill a bug that allows evil webpages to execute commands on computers.

 

A malicious page, when visited by a vulnerable Windows machine, can exploit the security flaw (CVE-2017-6753) to run arbitrary commands and code with the same privileges as the browser. In other words, the page can abuse the installed plugins to hijack the PC.

 

Full Article.

Take a look at the best antivirus, anti-malware, anti-spy, etc. software

Powered by WPeMatico