The patch that wasn't: Cisco emits fresh fixes for NTLM hash-spilling vuln and XSS-RCE combo in Jabber app

Wormable nasty still doesn't need any user input to pwn target devices

A previous patch for Cisco's Jabber chat product did not in fact fix four vulnerabilities - including one remote code execution (RCE) flaw that would allow malicious people to hijack targeted devices by sending a carefully crafted message....