Information Disclosure in IBM Sametime Classic Meeting Server
CVE-2014-4766

Currently unrated

Key Information:

Vendor: IBM
Status: Classic Meeting Server
Vendor: CVE Published:; 23 October 2014

What is CVE-2014-4766?

The IBM Sametime Classic Meeting Server versions 8.0.x and 8.5.x are susceptible to a vulnerability that allows remote attackers to access sensitive information. This occurs due to improper handling of exported Record and Playback (RAP) files, enabling unauthorized individuals to read the contents of these files. This vulnerability poses a risk to confidentiality and may lead to data breaches, as sensitive data can be revealed to attackers.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/94793

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21687361

x_refsource_CONFIRM

http://secunia.com/advisories/61847

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 23, 2014
Vulnerability Reserved
Jul 9, 2014