CVE-2013-5407

IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 do not properly restrict use of FRAME elements, which allows remote authenticated users to bypass intended access restrictions or obtain sensitive information via a crafted web site, related to a "frame injection" issue.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:sterling_b2b_integrator:5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:sterling_file_gateway:2.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2013-12-21 14:22

Updated : 2024-02-04 18:16


NVD link : CVE-2013-5407

Mitre link : CVE-2013-5407

CVE.ORG link : CVE-2013-5407


JSON object : View

Products Affected

ibm

  • sterling_b2b_integrator
  • sterling_file_gateway
CWE
CWE-20

Improper Input Validation