CVE Vulnerabilities

CVE-2013-0479

Published: Jul 03, 2013 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not properly restrict file types and extensions, which allows remote authenticated users to bypass intended access restrictions via a crafted filename.

Affected Software

Name Vendor Start Version End Version
Sterling_b2b_integrator Ibm 5.1 (including) 5.1 (including)
Sterling_b2b_integrator Ibm 5.2 (including) 5.2 (including)
Sterling_file_gateway Ibm 2.1 (including) 2.1 (including)
Sterling_file_gateway Ibm 2.2 (including) 2.2 (including)

References