Computer Security
[EN] securityvulns.ru no-pyccku


SAP Afaria security vulnerabilities
Published:29.06.2015
Source:
SecurityVulns ID:14557
Type:remote
Threat Level:
5/10
Description:DoS, authentication bypass
Affected:SAP : Afaria 7 .0
CVE:CVE-2015-2820 (Buffer overflow in XcListener in SAP Afaria 7.0.6001.5 allows remote attackers to cause a denial of service (process termination) via a crafted request, aka SAP Security Note 2132584.)
 CVE-2015-2816 (The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict access, which allows remote attackers to have unspecified impact via a crafted request, aka SAP Security Note 2134905.)
Original documentdocumentDarya Maenkova, [ERPSCAN-15-009] SAP Afaria 7 XcListener - Missing authorization check (29.06.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod