CVE-2014-8315

2014-10-16T15:55:20
ID CVE-2014-8315
Type cve
Reporter NVD
Modified 2017-09-07T21:29:22

Description

polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 replies with different timing depending on if a connection can be made, which allows remote attackers to conduct port scanning attacks via a host name and port in the cms parameter.