An unspecified interface in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands with SIDadm privileges via unspecified vectors, aka SAP Security Note 2234226.
CPE | Name | Operator | Version |
---|---|---|---|
trex | eq | 7.10 revision-63 |
packetstormsecurity.com/files/138446/SAP-TREX-7.10-Revision-63-Remote-Command-Execution.html
seclists.org/fulldisclosure/2016/Aug/94
www.securityfocus.com/bid/92066
www.onapsis.com/blog/analyzing-sap-security-notes-february-2016
www.onapsis.com/research/security-advisories/sap-trex-remote-command-execution-0