CVE Vulnerabilities

CVE-2013-0539

Published: Jul 03, 2013 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote attackers to hijack sessions, and consequently obtain sensitive information, via a brute-force attack.

Affected Software

Name Vendor Start Version End Version
Sterling_b2b_integrator Ibm 5.1 (including) 5.1 (including)
Sterling_b2b_integrator Ibm 5.2 (including) 5.2 (including)
Sterling_file_gateway Ibm 2.1 (including) 2.1 (including)
Sterling_file_gateway Ibm 2.2 (including) 2.2 (including)

References