Computer Security
[EN] no-pyccku

SAP Web AS multiple security vulnerabilities
updated since 21.01.2010
SecurityVulns ID:10546
Threat Level:
Description:Code execution with Internet Communication Framework, information leak, crossite scripting, directory traversal.
Affected:SAP : NetWeaver 6.40
 SAP : NetWeaver 7.00
 SAP : NetWeaver 7.01
Original documentdocumentOnapsis Research Labs, [Onapsis Security Advisory 2010-002] SAP J2EE Engine MDB Path Traversal (22.02.2010)
 documentOnapsis Research Labs, [Onapsis Security Advisory 2010-003] SAP WebDynpro Runtime XSS/CSS Injection (22.02.2010)
 documentOnapsis Research Labs, [Onapsis Security Advisory 2010-004] SAP J2EE Authentication Phishing Vector (22.02.2010)
 documentOnapsis Research Labs, [Onapsis Security Advisory 2010-001] SAP WebAS Integrated ITS Remote Command Execution (21.01.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod