Test ID:	1.3.6.1.4.1.25623.1.0.106252
Category:	CISCO
Title:	Cisco Webex Meetings Server Remote Command Execution Vulnerability
Summary:	A vulnerability in Cisco Webex Meetings Server could allow an; unauthenticated, remote attacker to bypass security restrictions on a host located in a DMZ and inject arbitrary; commands on a targeted system.
Description:	Summary: A vulnerability in Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to bypass security restrictions on a host located in a DMZ and inject arbitrary commands on a targeted system. Vulnerability Insight: The vulnerability is due to insufficient sanitization of user-supplied data processed by the affected software. An attacker could exploit this vulnerability by injecting arbitrary commands into existing application scripts running on a targeted device located in a DMZ. Vulnerability Impact: Successful exploitation could allow an attacker to execute arbitrary commands on the device with elevated privileges. Affected Software/OS: Cisco Webex Meetings Server version 2.0, 2.5 and 2.6. Solution: See the referenced vendor advisory for a solution. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1482 BugTraq ID: 92959 http://www.securityfocus.com/bid/92959 Cisco Security Advisory: 20160914 Cisco WebEx Meetings Server Remote Command Execution Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160914-wem http://www.securitytracker.com/id/1036809
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.