Cisco WebEx Meeting Center URL重定向漏洞(CVE-2017-12297)
发布日期:2017-11-28
更新日期:2017-12-01
受影响系统:
Cisco WebEx Meetings T32.6
Cisco WebEx Meetings T32.4
Cisco WebEx Meetings T32.3
描述:
BUGTRAQ ID: 101985
CVE(CAN) ID: CVE-2017-12297
Cisco WebEx Meetings是网络会议解决方案。
Cisco WebEx Meeting Center在实现上存在远程URL重定向漏洞,攻击者利用此漏洞可构造恶意URI,诱使用户浏览。
<*来源:Hanson Nottingham
链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc
*>
建议:
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-20171129-wmc)以及相应补丁:
cisco-sa-20171129-wmc:Cisco WebEx Meeting Center URL Redirection Vulnerability
链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171129-wmc
本文永久更新链接地址:http://www.linuxidc.com/Linux/2017-12/149027.htm