Back to search
CVE-2009-0440
Published: Feb 22, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
IBM WebSphere Partner Gateway (WPG) 6.0.0 through 6.0.0.7 does not properly handle failures of signature verification, which might allow remote authenticated users to submit a crafted RosettaNet (aka RNIF) document to a backend application, related to (1) "altered service content" and (2) "digital signature foot-print."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
websphere-pgateway-rnif-signatures(48530)
vdb-entry
x_refsource_XF
33839
vdb-entry
x_refsource_BID
33994
third-party-advisory
x_refsource_SECUNIA
http://www-01.ibm.com/support/docview.wss?uid=swg21330341
x_refsource_CONFIRM
JR31231
vendor-advisory
x_refsource_AIXAPAR
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now