Lucene search
Manuel Santamarina SuarezZDI-08-028HistoryMay 21, 2008 - 12:00 a.m.
IBM Lotus Sametime Community Services Multiplexer Stack Overflow Vulnerability
2008-05-2100:00:00
Manuel Santamarina Suarez
www.zerodayinitiative.com
18
EPSS
0.969
Percentile
99.7%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Sametime. Authentication is not required to exploit this vulnerability. The specific flaw exists in the handling of long URLs in the Community Services Multiplexer (StMux.exe) listening on TCP port 1533. A specially crafted URL can be passed into a vulnerable sscanf() function that will result in a stack overflow resulting in the ability to execute arbitrary code.
Related
d2
d2
DSquare Exploit Pack: D2SEC_SAMETIME
2008-05-29 16:32:00
saint
saint
IBM Lotus Sametime Community Services Multiplexer buffer overflow
2008-05-30 00:00:00
IBM Lotus Sametime Community Services Multiplexer buffer overflow
2008-05-30 00:00:00
IBM Lotus Sametime Community Services Multiplexer buffer overflow
2008-05-30 00:00:00
nvd
nvd
CVE-2008-2499
2008-05-29 16:32:00
nessus
nessus
IBM Lotus Sametime Multiplexer Buffer Overflow
2013-09-24 00:00:00
checkpoint_advisories
checkpoint_advisories
IBM Lotus Sametime Server Multiplexer Stack Buffer Overflow (CVE-2008-2499)
2009-11-16 00:00:00
cvelist
cvelist
CVE-2008-2499
2008-05-29 16:00:00
kaspersky
kaspersky
KLA10203 ACE vulnerability in IBM Lotus Sametime
2008-05-29 00:00:00
prion
prion
Stack overflow
2008-05-29 16:32:00
metasploit
metasploit
IBM Lotus Domino Sametime STMux.exe Stack Buffer Overflow
2008-11-14 11:04:33
exploitdb
exploitdb
IBM Lotus Sametime 8.0 - Multiplexer Buffer Overflow
2008-05-21 00:00:00
packetstorm
packetstorm
IBM Lotus Domino Sametime STMux.exe Stack Overflow
2009-11-26 00:00:00
cve
cve
CVE-2008-2499
2008-05-29 16:32:00