Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:ibm:lotus_sametime:8.5.1.1:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2013-0534 |
The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, and 8.5.2.1, as used in the Lotus Notes client and separately, might allow local users to obtain sensitive information by leveraging the persistence of cleartext password strings within process memory. Published: June 21, 2013; 10:55:01 AM -0400 |
V3.x:(not available) V2.0: 1.9 LOW |
CVE-2013-0535 |
Multiple cross-site scripting (XSS) vulnerabilities in the Classic Meeting Server in IBM Sametime 7.5.1.2 through 8.5.2.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Published: May 02, 2013; 2:55:00 PM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
CVE-2013-0553 |
The client implementation in IBM Sametime 8.5.1 through 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other products, allows remote authenticated users to send commands to individual chat users, or to all participants in a chat room, via a crafted Sametime Instant Message (IM). Published: April 27, 2013; 11:24:14 PM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
CVE-2013-0533 |
Cross-site scripting (XSS) vulnerability in the Sametime Links server in IBM Sametime 8.0.2 through 8.5.2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Published: April 27, 2013; 11:24:14 PM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
CVE-2011-1106 |
Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server in IBM Lotus Sametime allows remote attackers to inject arbitrary web script or HTML via the authReasonCode parameter in an OpenDatabase action. Published: March 01, 2011; 6:00:03 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |