CVE-2014-8315

2014-10-16T19:55:00
ID CVE-2014-8315
Type cve
Reporter cve@mitre.org
Modified 2018-10-09T19:53:00

Description

polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 replies with different timing depending on if a connection can be made, which allows remote attackers to conduct port scanning attacks via a host name and port in the cms parameter.