Published: 29/05/2008 Updated: 31/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in the Community Services Multiplexer (aka MUX or StMux.exe) in IBM Lotus Sametime 7.5.1 CF1 and previous versions, and 8.x prior to 8.0.1, allows remote malicious users to execute arbitrary code via a crafted URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm lotus sametime 7.5.1
ibm lotus sametime

source: wwwsecurityfocuscom/bid/29328/info IBM Lotus Sametime is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer An attacker can exploit this issue to execute arbitrary code within the context of the affected applicati ...

## # $Id: domino_sametime_stmuxrb 9262 2010-05-09 17:45:00Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...

CWE-119 http://www.zerodayinitiative.com/advisories/ZDI-08-028/http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21303920 http://www.securityfocus.com/bid/29328 http://secunia.com/advisories/30309 http://www.securitytracker.com/id?1020093 http://www.vupen.com/english/advisories/2008/1595/references https://exchange.xforce.ibmcloud.com/vulnerabilities/42575 https://nvd.nist.gov https://www.exploit-db.com/exploits/31820/

CVE-2008-2499

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect