Short Session ID Vulnerability in IBM Sterling B2B Integrator and Sterling File Gateway

Short Session ID Vulnerability in IBM Sterling B2B Integrator and Sterling File Gateway

CVE-2013-0539 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An unspecified third-party component in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 uses short session ID values, which makes it easier for remote attackers to hijack sessions, and consequently obtain sensitive information, via a brute-force attack.

Learn more about our Cis Benchmark Audit For Ibm I.