Session fixation

IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote attackers to cause a denial of service WebPlayer Firefox extension crash via a crafted Audio Visual AV session...