CVE-2009-0440

CVE-2009-0440 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

IBM WebSphere Partner Gateway (WPG) 6.0.0 through 6.0.0.7 does not properly handle failures of signature verification, which might allow remote authenticated users to submit a crafted RosettaNet (aka RNIF) document to a backend application, related to (1) "altered service content" and (2) "digital signature foot-print."

Learn more about our Cis Benchmark Audit For Ibm Websphere.