Lucene search
PRIOn knowledge basePRION:CVE-2014-8315HistoryOct 16, 2014 - 7:55 p.m.
Code injection
2014-10-1619:55:00
PRIOn knowledge base
www.prio-n.com
2
polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 replies with different timing depending on if a connection can be made, which allows remote attackers to conduct port scanning attacks via a host name and port in the cms parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| businessobjects_explorer | eq | 14.0.5 |
References
seclists.org/fulldisclosure/2014/Oct/48
www.securityfocus.com/archive/1/533672/100/0/threaded
www.securityfocus.com/bid/70382
exchange.xforce.ibmcloud.com/vulnerabilities/96935
service.sap.com/sap/support/notes/1908562
www.csnc.ch/misc/files/advisories/CSNC-2013-016_SAP_BusinessObjects_Explorer_Port-Scanning.txt
Related
nvd
nvd
CVE-2014-8315
2014-10-16 19:55:20
cvelist
cvelist
CVE-2014-8315
2014-10-16 19:00:00
cve
cve
CVE-2014-8315
2014-10-16 19:55:20