Descrição
Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.
Below is a complete list of vulnerabilities:
- OSI vulnerability in Cisco Jabber can be exploited remotely via special crafted message to obtain sensitive information.
- An code execution vulnerability in Cisco Jabber can be exploited remotely via special crafted XMPP to execute arbitrary code.
- A command injection vulnerability in the application protocol handling features can be exploited remotely to execute arbitrary code.
Comunicados originais
Cisco Jabber for Windows Universal Naming Convention Link Handling Vulnerability
- Cisco Jabber for Windows Message Handling Arbitrary Code Execution Vulnerability
- Cisco Jabber for Windows Protocol Handler Command Injection Vulnerability
- Cisco Jabber for Windows Information Disclosure Vulnerability
Exploração
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Produtos relacionados
Lista de CVE
- CVE-2020-3537 high
- CVE-2020-3495 critical
- CVE-2020-3498 high
- CVE-2020-3430 critical
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!