The HTTP Server Adapter in IBM Sterling B2B Integrator 5.1 and 5.2.x and Sterling File Gateway 2.1 and 2.2 allows remote attackers to cause a denial of service (connection-slot exhaustion) via a crafted HTTP request.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sterling_b2b_integrator | Ibm | 5.1 (including) | 5.1 (including) |
| Sterling_b2b_integrator | Ibm | 5.2 (including) | 5.2 (including) |
| Sterling_b2b_integrator | Ibm | 5.2.1 (including) | 5.2.1 (including) |
| Sterling_b2b_integrator | Ibm | 5.2.2 (including) | 5.2.2 (including) |
| Sterling_b2b_integrator | Ibm | 5.2.4 (including) | 5.2.4 (including) |
| Sterling_b2b_integrator | Ibm | 5.2.4.1 (including) | 5.2.4.1 (including) |
| Sterling_b2b_integrator | Ibm | 5.2.4.2 (including) | 5.2.4.2 (including) |
| Sterling_b2b_integrator | Ibm | 5.2.5.0 (including) | 5.2.5.0 (including) |
References
- http://secunia.com/advisories/62082
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05121
- http://www-01.ibm.com/support/docview.wss?uid=swg21693131
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98650
- http://secunia.com/advisories/62082
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05121
- http://www-01.ibm.com/support/docview.wss?uid=swg21693131
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98650