CVE-2013-0553

CWE-119 โ€” Buffer Overflow7 documents5 sources
Severity
3.5LOW
EPSS
0.1%
top 65.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Lotus SametimeIBM Sametime
Timeline
PublishedApr 28
Latest updateMay 5

Description

The client implementation in IBM Sametime 8.5.1 through 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other products, allows remote authenticated users to send commands to individual chat users, or to all participants in a chat room, via a crafted Sametime Instant Message (IM).

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages2 packages

โ–ถNVDibm/sametime8.5.2.0, 8.5.2.1+1
โ–ถNVDibm/lotus_sametime8.5.1, 8.5.1.1+1

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-49qm-rx3j-4jwj: The client implementation in IBM Sametime 8โ†—2022-05-05
โ–ถ
CVEList
CVE-2013-0553: The client implementation in IBM Sametime 8โ†—2013-04-28
โ–ถ

๐Ÿ“‹Vendor Advisories

2
Red Hat
mysql: yaSSL buffer overflow (a different flaw than CVE-2012-0553)โ†—2013-03-19
โ–ถ
Red Hat
mysql: yaSSL buffer overflow ((a different flaw than CVE-2013-1492)โ†—2013-03-19
โ–ถ

๐Ÿ’ฌCommunity

2
Bugzilla
CVE-2012-0553 mysql: yaSSL buffer overflow ((a different flaw than CVE-2013-1492)โ†—2013-03-29
โ–ถ
Bugzilla
CVE-2013-1492 mysql: yaSSL buffer overflow (a different flaw than CVE-2012-0553)โ†—2013-03-29
โ–ถ