Cisco Jabber for Windows Remote Code Execution Vulnerability

A vulnerability in the Send Screen Capture function of Cisco Jabber for Windows could allow an unauthenticated, remote attacker to install arbitrary files on a targeted system.

The vulnerability is due to insufficient validation of data in the packets sent via the send screen capture functionality. An attacker could exploit this vulnerability by crafting or altering the packets sent as part of a send screen capture that would result in an uncontrolled directory traversal and/or acceptance of non-graphic type files. An exploit could allow the attacker to potentially execute arbitrary code on the Windows machine with the privileges of the installed Cisco Jabber for Windows client software.

Cisco has confirmed the vulnerability in a security notice and released software updates.

Cisco indicates through the CVSS score that functional exploit code exists; however, the code is not known to be publicly available.