6.8 Medium
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.058 Low
EPSS
Percentile
93.4%
SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service (crash) via a 0x53 LPD command, which causes the server to terminate.
CPE | Name | Operator | Version |
---|---|---|---|
sap:sapgui | sap sapgui | eq | 7.10 |
sap:saplpd | sap saplpd | le | 6.28 |
sap:sapsprint | sap sapsprint | eq | * |
secunia.com/advisories/28786
secunia.com/advisories/28811
securityreason.com/securityalert/3619
www.securityfocus.com/archive/1/487508/100/0/threaded
www.securityfocus.com/archive/1/487575/100/0/threaded
www.securityfocus.com/bid/27613
www.securitytracker.com/id?1019300
www.vupen.com/english/advisories/2008/0409
www.vupen.com/english/advisories/2008/0438