CVE-2014-3088

Name of the Vulnerable Software and Affected Versions IBM Sametime Meeting Server version 8.5.1

Description The issue allows remote authenticated users to bypass intended upload restrictions. This is achieved by modifying the Content-Type header and file extension in wAttach?OpenForm multipart/form-data POST requests, which are not properly validated by the server. For example, an attacker could replace a text/plain .txt upload with an application/octet-stream .exe upload.

Recommendations For IBM Sametime Meeting Server version 8.5.1, consider validating file formats on the server-side to prevent bypassing of upload restrictions. As a temporary workaround, restrict access to the stconf.nsf file and the wAttach?OpenForm endpoint to minimize the risk of exploitation.