Cisco WebEx Meetings Server Authentication Bypass Vulnerability

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to access limited meeting information on the Cisco WebEx Meetings Server.

The vulnerability is due to the presence of deprecated code within the Cisco WebEx Meetings Server. An attacker could exploit this vulnerability by spoofing a legitimate user. An exploit could allow the attacker to view limited meeting information for that user contained on the server.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170315-webex [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170315-webex”]