IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not properly restrict file types and extensions, which allows remote authenticated users to bypass intended access restrictions via a crafted filename.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg21640830 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/81547 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2013-07-03T10:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2012-12-16T00:00:00
Link: CVE-2013-0479
JSON object: View
NVD Information
Status : Modified
Published: 2013-07-03T13:54:30.990
Modified: 2017-08-29T01:33:03.150
Link: CVE-2013-0479
JSON object: View
Redhat Information
No data.
CWE