If you have seen this today, it's a biggie: Widely used WebEx plugin for Chrome will execute attack code—patch now! | Ars Technica
Q: does anyone know whether blocking URL matches *cwcsf-nativemsg-iframe-43c85c0d-d633-af5e-c056-32dc7efc570b.html will address until plugins can be updated (WebEx has not yet fixed the issue apparently)?
Refs: (replaced t with X to get them to be accepted here)
Based on what I've read, it appears so. I tried to run the sample exploit on a test machine but didnt have any luck on the affected plugin version though.