CVE-2013-3983

The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and 9.x through 9.0.0.1 does not validate URLs in Cookie headers before using them in redirects, which has unspecified impact and remote attack vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:sametime:8.5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sametime:8.5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sametime:9.0.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sametime:9.0.0.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-02-14 13:10

Updated : 2024-02-04 18:35


NVD link : CVE-2013-3983

Mitre link : CVE-2013-3983

CVE.ORG link : CVE-2013-3983


JSON object : View

Products Affected

ibm

  • sametime
CWE
CWE-20

Improper Input Validation