Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 9.3.0 before FP8 allows remote authenticated users to cause a denial of service (CPU consumption) via a ‘ ‘ character.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4807
Reference (s):
- http://www-01.ibm.com/support/docview.wss?uid=swg21690662
- SECUNIA:59549
- URL: http://secunia.com/advisories/59549
- XF:ibm-sterlingom-cve20144807-dos(95355)
- URL: https://exchange.xforce.ibmcloud.com/vulnerabilities/95355