CVE-2013-0479

IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not properly restrict file types and extensions, which allows remote authenticated users to bypass intended access restrictions via a crafted filename.

Published: Jul 3, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-0479
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ibm / sterling_b2b_integrator	5.2	5.2.x
ibm / sterling_b2b_integrator	5.1	5.1.x
ibm / sterling_file_gateway	2.1	2.1.x
ibm / sterling_file_gateway	2.2	2.2.x

http://www-01.ibm.com/support/docview.wss?uid=swg21640830
https://exchange.xforce.ibmcloud.com/vulnerabilities/81547

Vulnerability Database

289,697

CVE-2013-0479