Code injection

2014-11-0415:55:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.7%

JSON

Unspecified vulnerability in SAP Internet Communication Manager (ICM), as used in SAP NetWeaver 7.02 and 7.3, allows remote attackers to cause a denial of service (process termination) via unknown vectors.

CPENameOperatorVersion
netweavereq7.30
netweavereq7.02

CPE	Name	Operator	Version
	netweaver	eq	7.30
	netweaver	eq	7.02

References

blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/

www.securityfocus.com/bid/71030

erpscan.io/advisories/erpscan-14-016-sap-netweaver-httpd-partial-http-post-requests-dos/

erpscan.io/press-center/blog/sap-critical-patch-update-october-2014/

exchange.xforce.ibmcloud.com/vulnerabilities/98582

service.sap.com/sap/support/notes/1966655

twitter.com/SAP_Gsupport/status/524138333065449472