CVE-2014-3088
IBM Sametime Meet Server 8.5 Arbitrary File Upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
stconf.nsf in IBM Sametime Meeting Server 8.5.1 relies on the client to validate the file format used in wAttach?OpenForm multipart/form-data POST requests, which allows remote authenticated users to bypass intended upload restrictions by modifying the Content-Type header and file extension, as demonstrated by replacing a text/plain .txt upload with an application/octet-stream .exe upload.
stconf.nsf en IBM Sametime Meeting Server 8.5.1 depende del cliente para validar el formato de fichero utilizado en solicitudes wAttach?OpenForm multipart/form-data POST, lo que permite a usuarios remotos autenticados evadir restricciones de subida mediante la modificación la cabera de tipo de contenido y extensión de fichero, tal y como fue demostrado mediante la sustitución de una subida text/plain .txt por una subida application/octet-stream .exe.
IBM Sametime Meet Server version 8.8 suffers from a remote arbitrary file upload vulnerability.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-04-29 CVE Reserved
- 2014-07-01 CVE Published
- 2024-05-13 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://linux.oracle.com/errata/ELSA-2014-0747.html | X_refsource_confirm | |
| http://packetstormsecurity.com/files/127294 | X_refsource_misc |
|
| http://packetstormsecurity.com/files/127829/IBM-Sametime-Meet-Server-8.5-Arbitrary-File-Upload.html | X_refsource_misc |
|
| http://www.securityfocus.com/bid/68291 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ibm Search vendor "Ibm" | Sametime Meeting Server Search vendor "Ibm" for product "Sametime Meeting Server" | 8.5.1 Search vendor "Ibm" for product "Sametime Meeting Server" and version "8.5.1" | - |
Affected
| ||||||