Stack-based Buffer Overflow in IBM Lotus Sametime by IBM
CVE-2008-2499

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Sametime
Vendor: CVE Published:; 29 May 2008

What is CVE-2008-2499?

The vulnerability occurs in the Community Services Multiplexer (Mux or StMux.exe) of IBM Lotus Sametime, which is susceptible to a stack-based buffer overflow. This flaw can be exploited by remote attackers who craft malicious URLs, potentially allowing them to execute arbitrary code on affected systems. This poses a significant risk, as it can lead to unauthorized access and control over the software.

References

http://www.zerodayinitiative.com/advisories/ZDI-08-028/

x_refsource_MISC

http://www.securitytracker.com/id?1020093

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/42575

vdb-entryx_refsource_XF

EPSS Score

76% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 29, 2008
Vulnerability Reserved
May 29, 2008