Looks like a rather severe Cisco Webex exploit popped up over the weekend, affecting the Chrome extension, v1.0.3? onward, and (should be) fixed in current version, 1.0.5.1. The bug permitted arbitrary code execution on the local system upon visiting an affected/exploited page. Note that we may see another updated version soon, as it looks as though there’s a second/lingering code execution exploit that may still be affecting 1.0.5 (possibly 1.0.5.1?), reported via below chromium link by original submitter of bug, in the last couple comments as of this writing.
Detection of chrome extension version can be found via %USERPROFILE%\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma\
Pertinent pages where more information can be found:
http://arstechnica.com/security/201...n-opens-20-million-users-to-drive-by-attacks/
https://bugs.chromium.org/p/project-zero/issues/detail?id=1096
Detection of chrome extension version can be found via %USERPROFILE%\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma\
Pertinent pages where more information can be found:
http://arstechnica.com/security/201...n-opens-20-million-users-to-drive-by-attacks/
https://bugs.chromium.org/p/project-zero/issues/detail?id=1096
Facebook
Twitter