Google researcher Tavis Ormandy has discovered a problem with Cisco's WebEx Chrome extension. He tweeted that "there was a secret URL in WebEx that allowed any website to run arbitrary code." Supposedly, Cisco has patched the problem with version 1.03 of the Chrome extension, although according to the Register, crypto developer Filippo Valsorda says the patch is incomplete. Rather than take a chance, I would suggest just deleting the WebEx extension for now.
E-mail: email@example.com Phone: 703.359.0700
Digital Forensics/Information Security/Information Technology