Vulnerabilities > CVE-2014-6099 - Credentials Management vulnerability in IBM Sterling B2B Integrator 5.2/5.2.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The Change Password feature in IBM Sterling B2B Integrator 5.2.x through 5.2.4 does not have a lockout protection mechanism for invalid login requests, which makes it easier for remote attackers to obtain admin access via a brute-force approach.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |