SymmetricalDataSecurity: IBM Security Bulletin: Session management vulnerability affects IBM Sterling B2B Integrator (CVE-2017-1152)

Thursday, June 22, 2017

IBM Security Bulletin: Session management vulnerability affects IBM Sterling B2B Integrator (CVE-2017-1152)

IBM Sterling Global Integration On-Demand Environment does not properly update the SESSIONID with each request, which could allow a user to obtain the ID in further attacks against the system.

CVE(s): CVE-2017-1152

Affected product(s) and affected version(s):

IBM Sterling B2B Integrator 5.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2sUvkq8
X-Force Database: http://ift.tt/2odAHyr

The post IBM Security Bulletin: Session management vulnerability affects IBM Sterling B2B Integrator (CVE-2017-1152) appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2sURSXD

SymmetricalDataSecurity

Thursday, June 22, 2017

IBM Security Bulletin: Session management vulnerability affects IBM Sterling B2B Integrator (CVE-2017-1152)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews