Lucene search
K

4564 matches found

Cvelist
Cvelist
added 2012/05/15 1:0 a.m.28 views

CVE-2012-2514

The DiagiEventSource function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...

8.9AI score0.03354EPSS
Exploits10References5
CVE
CVE
added 2012/05/15 1:0 a.m.66 views

CVE-2012-2512

CVE-2012-2512 affects SAP NetWeaver Dispatcher (7.0 EHP1/EHP2) via disp+work.exe: DiagTraceStreamI vulnerability triggered by crafted SAP Diag packets over remote TCP causes a denial of service (daemon crash). Vulnerable versions include disp+work.exe v7010.29.15.58313 and v7200.70.18.23869. Impa...

5CVSS8.8AI score0.03354EPSS
Exploits10References5Affected Software1
CVE
CVE
added 2012/05/15 1:0 a.m.135 views

CVE-2012-2612

CVE-2012-2612 refers to a Denial of Service in SAP NetWeaver Dispatcher (disp+work.exe) 7.0 EHP1/EHP2 where the DiagTraceHex function can be triggered by crafted SAP Diag packets to cause a daemon crash. Affected component: Dispatcher service within SAP NetWeaver 7.0 EHP1/EHP2 (disp+work.exe v701...

5CVSS8.8AI score0.03354EPSS
Exploits5References5Affected Software1
CVE
CVE
added 2012/05/15 1:0 a.m.57 views

CVE-2012-2511

CVE-2012-2511 affects SAP NetWeaver Dispatcher 7.0 EHP1/EHP2, specifically the disp+work.exe components (versions v7010.29.15.58313 and v7200.70.18.23869). The DiagTraceAtoms function is the root cause: processing crafted SAP Diag packets in the Dispatcher can trigger a remote, unauthenticated de...

5CVSS8.8AI score0.03679EPSS
Exploits10References5Affected Software1
Cvelist
Cvelist
added 2012/05/15 1:0 a.m.24 views

CVE-2012-2512

The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...

9AI score0.03354EPSS
Exploits10References5
CVE
CVE
added 2012/05/15 1:0 a.m.128 views

CVE-2012-2514

CVE-2012-2514 affects SAP NetWeaver Dispatcher in SAP NetWeaver 7.0 EHP1 (disp+work.exe v7010.29.15.58313) and EHP2 (v7200.70.18.23869). The vulnerability is in the DiagiEventSource function of the Dispatcher, exploitable by remotely crafted SAP Diag packets to cause a denial of service (daemon c...

5CVSS8.7AI score0.03354EPSS
Exploits10References5Affected Software1
securityvulns
securityvulns
added 2012/05/14 12:0 a.m.40 views

SAP NetWeaver multiple security vulnerabilities

Multiple vulnerabilities in Dispatcher service...

7.6CVSS1.9AI score0.04216EPSS
Exploits16References1Affected Software1
securityvulns
securityvulns
added 2012/05/14 12:0 a.m.51 views

CORE-2012-0123 - SAP Netweaver Dispatcher Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SAP Netweaver Dispatcher Multiple Vulnerabilities 1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL:...

7.6CVSS0.1AI score0.04216EPSS
Exploits16
0day.today
0day.today
added 2012/05/09 12:0 a.m.81 views

SAP Netweaver Dispatcher Multiple Vulnerabilities

Exploit for windows platform in category dos / poc SAP Netweaver Dispatcher Multiple Vulnerabilities 1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL:...

7AI score0.04216EPSS
Exploits16
exploitpack
exploitpack
added 2012/05/09 12:0 a.m.56 views

SAP NetWeaver Dispatcher - Multiple Vulnerabilities

SAP NetWeaver Dispatcher - Multiple Vulnerabilities Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SAP Netweaver Dispatcher Multiple Vulnerabilities 1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL:...

7.6CVSS0.7AI score0.04216EPSS
Exploits16
Exploit DB
Exploit DB
added 2012/05/09 12:0 a.m.71 views

SAP NetWeaver Dispatcher - Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SAP Netweaver Dispatcher Multiple Vulnerabilities 1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL:...

9.8CVSS9.5AI score0.04216EPSS
Exploits16
Core Security
Core Security
added 2012/05/08 12:0 a.m.29 views

SAP Netweaver Dispatcher Multiple Vulnerabilities

1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL: http://www.coresecurity.com/content/sap-netweaver-dispatcher-multiple-vulnerabilities Date published: 2012-05-08 Date of last update: 2012-05-10 Vendors contacted: SAP Releas...

9.8CVSS0.2AI score0.41919EPSS
Exploits26
Packet Storm
Packet Storm
added 2012/05/08 12:0 a.m.58 views

SAP Netweaver 7.0 EHP1/EHP2 Buffer Overflows

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ SAP Netweaver Dispatcher Multiple Vulnerabilities 1. Advisory Information Title: SAP Netweaver Dispatcher Multiple Vulnerabilities Advisory ID: CORE-2012-0123 Advisory URL:...

7.6CVSS0.6AI score0.04216EPSS
Exploits16
NVD
NVD
added 2012/02/23 8:7 p.m.21 views

CVE-2012-1291

Unspecified vulnerability in the com.sap.aii.mdt.amt.web.AMTPageProcessor servlet in SAP NetWeaver 7.0 allows remote attackers to obtain sensitive information about the Adapter Monitor via unspecified vectors, possibly related to the EnableInvokerServletGlobally property in the servletjsp service...

5CVSS6.3AI score0.01354EPSS
Exploits0References5
NVD
NVD
added 2012/02/23 8:7 p.m.18 views

CVE-2012-1290

Cross-site scripting XSS vulnerability in b2b/auction/container.jsp in the Internet Sales crm.b2b module in SAP NetWeaver 7.0 allows remote attackers to inject arbitrary web script or HTML via the loadPage parameter...

4.3CVSS5.7AI score0.01148EPSS
Exploits0References5
NVD
NVD
added 2012/02/23 8:7 p.m.20 views

CVE-2012-1289

Multiple directory traversal vulnerabilities in SAP NetWeaver 7.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the logfilename parameter to 1 b2b/admin/log.jsp or 2 b2b/admin/logview.jsp in the Internet Sales crm.b2b component, or 3 ipc/admin/log.jsp or 4...

4CVSS6.5AI score0.0169EPSS
Exploits1References7
NVD
NVD
added 2012/02/23 8:7 p.m.25 views

CVE-2012-1292

Unspecified vulnerability in the MessagingSystem servlet in SAP NetWeaver 7.0 allows remote attackers to obtain sensitive information about the MessagingSystem Performance Data via unspecified vectors...

5CVSS6.1AI score0.01354EPSS
Exploits0References5
Prion
Prion
added 2012/02/23 8:7 p.m.18 views

Directory traversal

Multiple directory traversal vulnerabilities in SAP NetWeaver 7.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the logfilename parameter to 1 b2b/admin/log.jsp or 2 b2b/admin/logview.jsp in the Internet Sales crm.b2b component, or 3 ipc/admin/log.jsp or 4...

4CVSS7AI score0.0169EPSS
Exploits1References7Affected Software1
Prion
Prion
added 2012/02/23 8:7 p.m.17 views

Code injection

Unspecified vulnerability in the com.sap.aii.mdt.amt.web.AMTPageProcessor servlet in SAP NetWeaver 7.0 allows remote attackers to obtain sensitive information about the Adapter Monitor via unspecified vectors, possibly related to the EnableInvokerServletGlobally property in the servletjsp service...

5CVSS6.8AI score0.01354EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2012/02/23 8:7 p.m.22 views

Design/Logic Flaw

Unspecified vulnerability in the MessagingSystem servlet in SAP NetWeaver 7.0 allows remote attackers to obtain sensitive information about the MessagingSystem Performance Data via unspecified vectors...

5CVSS6.6AI score0.01354EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder