CVE-2011-1370

The default configuration of the Sametime configuration servlet (SCS) in the server in IBM Lotus Sametime 7.0 through 8.5.2 does not enable an authentication requirement, which allows remote attackers to read the configuration settings by examining a response message.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:lotus_sametime:7.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:7.5.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:7.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:8.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:8.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:7.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:7.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:8.5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_sametime:7.5.1.1:*:*:*:*:*:*:*

Information

Published : 2011-10-29 03:55

Updated : 2017-08-16 18:34


NVD link : CVE-2011-1370

Mitre link : CVE-2011-1370


JSON object : View

CWE
CWE-16

Configuration

Advertisement

dedicated server usa

Products Affected

ibm

  • lotus_sametime