Lucene search
K

137 matches found

NVD
NVD
added 2004/04/15 4:0 a.m.19 views

CVE-2003-1037

Format string vulnerability in the WGate component for SAP Internet Transaction Server ITS allows remote attackers to execute arbitrary code via a high "trace level."...

7.5CVSS7.6AI score0.02659EPSS
Exploits0References3
NVD
NVD
added 2004/04/15 4:0 a.m.14 views

CVE-2003-1038

The AGate component for SAP Internet Transaction Server ITS allows remote attackers to obtain sensitive information via a command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames...

5CVSS6.2AI score0.01181EPSS
Exploits0References2
Cvelist
Cvelist
added 2004/03/16 5:0 a.m.22 views

CVE-2003-1036

Multiple buffer overflows in the AGate component for SAP Internet Transaction Server ITS allow remote attackers to execute arbitrary code via long 1 command, 2 runtimemode, or 3 session parameters, or 4 a long HTTP Content-Type header...

7.8AI score0.02566EPSS
Exploits0References2
Cvelist
Cvelist
added 2004/03/16 5:0 a.m.23 views

CVE-2003-1038

The AGate component for SAP Internet Transaction Server ITS allows remote attackers to obtain sensitive information via a command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames...

6.2AI score0.01181EPSS
Exploits0References2
Cvelist
Cvelist
added 2004/03/16 5:0 a.m.21 views

CVE-2003-1037

Format string vulnerability in the WGate component for SAP Internet Transaction Server ITS allows remote attackers to execute arbitrary code via a high "trace level."...

7.6AI score0.02659EPSS
Exploits0References3
NVD
NVD
added 2003/10/20 4:0 a.m.15 views

CVE-2003-0748

Directory traversal vulnerability in wgate.dll for SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to read arbitrary files via ..\ dot-dot backslash sequences in the theme parameter and a template parameter with a filename followed by space characters, which can preven...

5CVSS6.8AI score0.0728EPSS
Exploits1References3
NVD
NVD
added 2003/10/20 4:0 a.m.18 views

CVE-2003-0749

Cross-site scripting XSS vulnerability in wgate.dll for SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to insert arbitrary web script and steal cookies via the service parameter...

6.8CVSS5.8AI score0.03647EPSS
Exploits2References2
NVD
NVD
added 2003/10/20 4:0 a.m.14 views

CVE-2003-0747

wgate.dll in SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such as directory structure and operating system via incorrect parameters 1 service, 2 templatelanguage, 3 language, 4 theme, or 5 template, which leaks the...

5CVSS6.2AI score0.02839EPSS
Exploits1References3
CVE
CVE
added 2003/09/06 4:0 a.m.66 views

CVE-2003-0749

CVE-2003-0749 describes an XSS vulnerability in SAP Internet Transaction Server (ITS) involving wgate.dll. The affected component is wgate.dll (SAP ITS) with version details in the description, and the vulnerability is exploitable via the ~service parameter to inject arbitrary web script and stea...

6.8CVSS5.9AI score0.03647EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2003/09/06 4:0 a.m.25 views

CVE-2003-0749

Cross-site scripting XSS vulnerability in wgate.dll for SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to insert arbitrary web script and steal cookies via the service parameter...

5.8AI score0.03647EPSS
Exploits2References2
Cvelist
Cvelist
added 2003/09/06 4:0 a.m.22 views

CVE-2003-0747

wgate.dll in SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such as directory structure and operating system via incorrect parameters 1 service, 2 templatelanguage, 3 language, 4 theme, or 5 template, which leaks the...

6.2AI score0.02839EPSS
Exploits1References3
Cvelist
Cvelist
added 2003/09/06 4:0 a.m.17 views

CVE-2003-0748

Directory traversal vulnerability in wgate.dll for SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to read arbitrary files via ..\ dot-dot backslash sequences in the theme parameter and a template parameter with a filename followed by space characters, which can preven...

6.8AI score0.0728EPSS
Exploits1References3
securityvulns
securityvulns
added 2003/09/01 12:0 a.m.28 views

SAP Internet Transaction Server

Information leak, crossite scripting...

1.1AI score
Exploits0References1
exploitpack
exploitpack
added 2003/08/30 12:0 a.m.13 views

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Information Disclosure

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Information Disclosure source: https://www.securityfocus.com/bid/8515/info A vulnerability has been discovered in SAP Internet Transaction Server SITSthat could allow an attacker to obtain sensitive information. The problem occurs...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2003/08/30 12:0 a.m.18 views

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting source: https://www.securityfocus.com/bid/8517/info The 'wgate.dll' componenet of SAP Internet Transaction Server has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2003/08/30 12:0 a.m.21 views

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Information Disclosure

source: https://www.securityfocus.com/bid/8515/info A vulnerability has been discovered in SAP Internet Transaction Server SITSthat could allow an attacker to obtain sensitive information. The problem occurs due to SITS disclosing sensitive local filesystem information when handling malformed...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/08/30 12:0 a.m.20 views

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/8517/info The 'wgate.dll' componenet of SAP Internet Transaction Server has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of sufficient sanitization performed on data supplied to the 'wgate.dll' library. Exploitation...

7.4AI score
Exploits0
Rows per page
Query Builder