Main Vulnerability Database Exploits ID:3948 - Exploit for Information disclosure in Sametime - CVE-2013-3982

ID:3948 - Exploit for Information disclosure in Sametime - CVE-2013-3982

Published: August 11, 2020

Vulnerability identifier: #VU41620

Vulnerability risk: Medium

CVE-ID: CVE-2013-3982

CWE-ID: CWE-200

Exploitation vector: Remote access

Vulnerable software:
Sametime

Link to public exploit:

https://www.rapid7.com/db/modules/auxiliary/gather/ibm_sametime_version

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to obtain unspecified installation information and technical data via a request to a public page.

Remediation

Install update from vendor's website.

ID:3948 - Exploit for Information disclosure in Sametime - CVE-2013-3982

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human