1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: IBM Lotus Domino Sametime CVE-2008-2499

Web Attack: IBM Lotus Domino Sametime CVE-2008-2499

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in IBM Lotus Sametime which may result in remote code execution.

Additional Information

IBM Lotus Sametime is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely result in a denial of service.

Response

Download and install all vendor patches that addresses this vulnerability.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube