Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Browser in IBM Sterling Connect:Direct 1.4 before 1.4.0.11 and 1.5 through 1.5.0.1 does not close pages upon the timeout of a session, which allows physically proximate attackers to obtain sensitive administrative-console information by reading the screen of an unattended workstation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Sterling Connect:Direct 浏览器安全漏洞
Vulnerability Description
IBM Sterling Connect:Direct是美国IBM公司的一套点到点文件传输软件。该软件用于实现企业内和企业间的大容量、安全可靠的文件交付。 IBM Sterling Connect:Direct 1.4.0.11之前的1.4版本和1.5至1.5.0.1版本中的浏览器中存在漏洞,该漏洞源于会话超时后程序没有关闭页面。物理邻近的攻击者可通过查看无人看守的工作站的屏幕,利用该漏洞获得敏感的管理员控制信息。
CVSS Information
N/A
Vulnerability Type
N/A