Lucene search
+L

173 matches found

cvelist
cvelist
added 2017/08/29 6:0 p.m.17 views

CVE-2016-0354

IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a malicious file to a Sametime meeting room, that could be downloaded by unsuspecting users which could be executed with user privileges. IBM X-Force ID: 111893...

5.3AI score0.00769EPSS
Exploits0References4
cve
cve
added 2017/08/29 6:0 p.m.44 views

CVE-2016-2965

CVE-2016-2965 affects IBM Sametime Meeting Server versions 8.5.2 and 9.0. The issue is a cross-site request forgery (CSRF) caused by improper validation of user-supplied input. By convincing a user to visit a malicious link, an attacker could force the user to log out of Sametime. Multiple source...

6.5CVSS6.2AI score0.00796EPSS
Exploits0References4Affected Software1
osv
osv
added 2017/08/29 1:35 a.m.6 views

CVE-2016-2970

IBM Sametime 8.5 and 9.0 meetings server may provide detailed information in an error message that may provide details about the application to possible attackers. IBM X-Force ID: 113851...

4.3CVSS5.8AI score0.01093EPSS
Exploits0References4
prion
prion
added 2017/08/29 1:35 a.m.16 views

Design/Logic Flaw

IBM Sametime 8.5 and 9.0 meetings server may provide detailed information in an error message that may provide details about the application to possible attackers. IBM X-Force ID: 113851...

4CVSS6.2AI score0.01093EPSS
Exploits0References4Affected Software1
cnvd
cnvd
added 2017/08/28 12:0 a.m.3 views

IBM Sametime Meetings Server Arbitrary File Upload Vulnerability

IBM Sametime is a suite of next-generation social communication tools from IBM in the United States. The tool helps users realize real-time business collaboration by integrating audio voice, data and video.Sametime Enterprise Meeting Server is one of the enterprise media servers. A security...

6CVSS5.6AI score0.00769EPSS
Exploits0References1
nvd
nvd
added 2014/10/23 1:55 a.m.15 views

CVE-2014-4766

IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback RAP file...

5CVSS6AI score0.01354EPSS
Exploits0References3
prion
prion
added 2014/10/23 1:55 a.m.15 views

Design/Logic Flaw

IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback RAP file...

5CVSS6.5AI score0.01354EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2014/10/23 1:0 a.m.23 views

CVE-2014-4766

IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback RAP file...

6AI score0.01354EPSS
Exploits0References3
openvas
openvas
added 2014/08/27 12:0 a.m.22 views

IBM Sametime Classic Meeting Server 8.x - 8.5.2.1 Multiple Vulnerabilities - Active Check

IBM Sametime Classic Meeting Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.2AI score0.0056EPSS
Exploits1References6
packetstorm
packetstorm
added 2014/08/11 12:0 a.m.41 views

IBM Sametime Meet Server 8.5 Arbitrary File Upload

Exploit Title: IBM Sametime Meet Server 8.5 Arbitrary File Upload Google Dork: intitle:"New Meet - IBM Lotus Sametime" Date: 11/08/2014 CVSS Score: http://nvd.nist.gov/cvss.cfm?calculator&version=2&vector=AV:N/AC:M/Au:N/C:P/I:P/A:P CVE-ID: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2014-3088...

5.5CVSS0.4AI score0.01971EPSS
Exploits1
packetstorm
packetstorm
added 2014/08/11 12:0 a.m.46 views

IBM Sametime Meet Server 8.5 Password Disclosure

Exploit Title: IBM Sametime Meet Server 8.5 Password Disclosure Google Dork: intitle:"Meeting Center - IBM Lotus Sametime" Date: 11/08/2014 CVSS Score: http://nvd.nist.gov/cvss.cfm?calculator&version=2&vector=AV:L/AC:L/Au:N/C:P/I:N/A:N CVE-ID:...

2.1CVSS0.0056EPSS
Exploits1
nvd
nvd
added 2014/07/26 3:55 p.m.24 views

CVE-2014-4748

Cross-site scripting XSS vulnerability in the Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

4.3CVSS5.5AI score0.01953EPSS
Exploits1References5
nvd
nvd
added 2014/07/26 3:55 p.m.24 views

CVE-2014-4747

The Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows physically proximate attackers to discover a meeting password hash by leveraging access to an unattended workstation to read HTML source code within a victim's browser...

2.1CVSS6.4AI score0.0056EPSS
Exploits1References3
prion
prion
added 2014/07/26 3:55 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

4.3CVSS5.9AI score0.01953EPSS
Exploits1References5Affected Software1
prion
prion
added 2014/07/26 3:55 p.m.17 views

Design/Logic Flaw

The Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows physically proximate attackers to discover a meeting password hash by leveraging access to an unattended workstation to read HTML source code within a victim's browser...

2.1CVSS6.9AI score0.0056EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2014/07/26 3:0 p.m.27 views

CVE-2014-4748

Cross-site scripting XSS vulnerability in the Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...

5.5AI score0.01953EPSS
Exploits1References5
cve
cve
added 2014/07/26 3:0 p.m.55 views

CVE-2014-4748

CVE-2014-4748 is an XSS vulnerability in the IBM Sametime Classic Meeting Server (8.x up to 8.5.2.1). The issue allows remote attackers to inject arbitrary web script or HTML via a crafted URL, enabling client-side script execution. The NVD entry reports a CVSSv2 base score of 4.3 (MEDIUM) with a...

4.3CVSS5.6AI score0.01953EPSS
Exploits1References5Affected Software1
cvelist
cvelist
added 2014/07/26 3:0 p.m.37 views

CVE-2014-4747

The Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows physically proximate attackers to discover a meeting password hash by leveraging access to an unattended workstation to read HTML source code within a victim's browser...

6.3AI score0.0056EPSS
Exploits1References3
nvd
nvd
added 2014/07/01 8:55 p.m.19 views

CVE-2014-3088

stconf.nsf in IBM Sametime Meeting Server 8.5.1 relies on the client to validate the file format used in wAttach?OpenForm multipart/form-data POST requests, which allows remote authenticated users to bypass intended upload restrictions by modifying the Content-Type header and file extension, as...

5.5CVSS6.1AI score0.01971EPSS
Exploits1References4
prion
prion
added 2014/07/01 8:55 p.m.10 views

Design/Logic Flaw

stconf.nsf in IBM Sametime Meeting Server 8.5.1 relies on the client to validate the file format used in wAttach?OpenForm multipart/form-data POST requests, which allows remote authenticated users to bypass intended upload restrictions by modifying the Content-Type header and file extension, as...

5.5CVSS6.6AI score0.01971EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder