Cisco Webex Meetings and Cisco Webex Meetings Server Unauthorized Audio Information Exposure Vulnerability

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session.

The vulnerability is due to a synchronization issue between meeting and media services on a vulnerable Webex site. An attacker could exploit this vulnerability by sending crafted requests to a vulnerable Cisco Webex Meetings or Cisco Webex Meetings Server site. A successful exploit could allow the attacker to maintain the audio connection of a Webex session despite being expelled.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-info-leak-PhpzB3sG

Security Impact Rating: Medium

CVE: CVE-2020-3471

Related:

  • No Related Posts

Need help :Message not transmitted DLP Email Prevent SMTP_MESSAGE.5300

I need a solution

Hi,

We use DLP in our company, we have problem with email prevent showing on the log that a message is not transmitted.  we have an Error on the log :

SMTP_MESSAGE.5300 Error while processing

I have found a link below talking about this, but i didn’t understand where to put configuration? MTA or in our DLP prevent mail server. And which configuration do i have to add ?

https://support.symantec.com/us/en/article.tech219387.html

https://support.symantec.com/us/en/article.tech219387.html

Best regards

0

Related:

Detailed Email Report for all users

I need a solution

Hi,

    Is it possible to generate a .csv report that displays all inbound and outbound email for ALL users.

Summary type data that has the Date, time, sender, receiver, size, etc for EVERY Email.

I’ve tried multiple reports but cant seem to get one to produce this information. 

Also:

I would like to restrict access for users to ONLY send emails a designated email domain and Only receive emails from that domain. 

I want all other email blocked from being received and sent. 

Is this possible.

Effectivly I want a “Block all” rule with a only allow *@<approved domain>.com.au

Cheers

Duncan

0

Related:

Cisco Webex Meetings Enumeration Attack

Cisco Webex Meetings is an enterprise solution for hosting online meetings that offers video conferencing, screen sharing, and webinar capabilities that support hundreds of participants. Cisco Webex Meetings utilizes a nine-digit number as a user-friendly meeting identifier that can be easily typed in to join a meeting from all types of endpoints.

On July 24th, 2019, Shreyans Mehta of Cequence Security and the CQ Prime Research Team reported to Cisco that an attacker could take advantage of one of the Webex Meetings API calls to enumerate all the meeting numbers in use by an organization on the platform at a certain moment in time.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191001-webex-enum

Security Impact Rating: Informational

Related:

I need a help with delisting

I need a solution

Hello,

I have a question concerning delisting from the Symantec Block List. I have checked the IP range 185.100.231.0/24 and it seems that all of the addresses are listed by your service. All the IPs from this range are dedicated and used only to send transactional messages.

Our user received the fallowing respond:

host mailin.samsung.com[203.254.224.12] refused to talk to me: 554 5.7.1 You are not allowed to connect.
2019-08-31 10:59:31

I would like to know why the entire IP range 185.100.231.0/24 is listed on your block list and ask if you could delist it, because your form https://ipremoval.sms.symantec.com/ipr/lookup does not have an option to delist more than one IP.

Thank you in advance.

0

Related:

New GroupWise Web Client Tech Preview Webinar Posted

Mike Bills

I wanted to give another special thanks to everyone that was able to attend our Webinar today to get a first look at the new GroupWise Web Client. If you were not able to join or you just want to watch it again the recording of the Webinar can be found here.

+read more

The post New GroupWise Web Client Tech Preview Webinar Posted appeared first on Cool Solutions. Mike Bills

Related: