Update: Security Flaw in Cisco WebEx Chrome

Leila Sharma

Cisco WebEx Extension for Google Chrome version 1.0.5 contains a fix for the vulnerability referenced in the following post: https://wp.nyu.edu/itsecurity/2017/01/24/security-flaw-in-cisco-webex-chrome-detected/

Google Chrome users can ensure that they are using the fixed version of the Cisco Webex extension for Google Chrome by taking the following steps:

  • Go to Chrome, Preferences and you will be on the “Settings” page for Google Chrome.
  • Click Extensions (as shown below in the top left of the “Settings” Page):
    Screenshot showing the "Extensions" option encricled in red on the top left of the Chrome Settings view.
  • Click into the check-box that precedes Developer mode:

    Screenshot showing the checked "Developer mode" option encircled in red on the top right of the Chrome, Extensions page.

  • Next, click the Update extensions now button:
    Screenshot showing the "Update extensions now" button encircled in red beneath the checked "Developer mode" option on the top right of the Chrome extensions view.

 

For additional information, please see:  https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170124-webex