PT-2013-4077 · Ibm · Ibm Sterling B2B Integrator+1

Publicado

2013-07-03

Atualizado

2017-08-29

CVE-2013-2982

CVSS v2.0

6.5

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions IBM Sterling B2B Integrator versions 5.1 through 5.2 IBM Sterling File Gateway versions 2.1 through 2.2

Description The issue allows remote authenticated users to upload arbitrary files via unspecified vectors.

Recommendations For IBM Sterling B2B Integrator versions 5.1 through 5.2, restrict file upload capabilities to authorized users until a fix is available. For IBM Sterling File Gateway versions 2.1 through 2.2, consider disabling file upload functionality as a temporary workaround until the issue is resolved.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2013-2982

Produtos afetados

Ibm Sterling B2B Integrator

Ibm Sterling File Gateway

PT-2013-4077 · Ibm · Ibm Sterling B2B Integrator+1

CVE-2013-2982

Identificadores relacionados

Produtos afetados

Referências · 3