An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote malicious users to hijack sessions, and consequently obtain sensitive information, via a brute-force attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm sterling file gateway 2.2 |
||
ibm sterling b2b integrator 5.2 |
||
ibm sterling b2b integrator 5.1 |
||
ibm sterling file gateway 2.1 |