IBM Sterling File Gateway is an application for transferring files between internal and external partners, allowing you to more securely and reliably transfer files with trading partners. IBM Sterling File Gateway versions 2.2.0.0-5.2.6.5_3, 6.0.0.0-6.0.3.4, 6.1 Versions .0.0-6.1.0.1 have a username enumeration vulnerability. The vulnerability stems from a significant difference in the returned messages. An attacker could exploit this vulnerability to enumerate usernames.
CPE | Name | Operator | Version |
---|---|---|---|
ibm ibm sterling file gateway >=6.1.0.0,<=6. | eq | 1.0.1 | |
ibm ibm sterling file gateway >=6.0.0.0,<=6. | eq | 0.3.4 |