CVE-2016-0210
N/A
N/A
Summary
IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to obtain sensitive information. By allowing HTTP OPTIONS method, a remote attacker could send a specially-crafted query to a vulnerable server running to cause the server to disclose sensitive information in the HTTP response.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM Corporation | Sterling B2B Integrator | 5.1 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2 | affected |
| IBM Corporation | Sterling B2B Integrator | 4.3 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.0 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.4 | affected |
| IBM Corporation | Sterling B2B Integrator | - | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.1 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.2 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.3 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.4.1 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.4.2 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.5 | affected |
| IBM Corporation | Sterling B2B Integrator | 5.2.6 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.