3 matches found
SAPlpd多个远程溢出及拒绝服务漏洞
BUGTRAQ ID: 27613 CVECAN ID: CVE-2008-0620,CVE-2008-0621 SAPlpd是SAP GUI软件包中所捆绑的Windows平台行市打印机守护程序。 SAPLPD服务程序在处理LPD命令时存在多个缓冲区溢出漏洞,远程攻击者可能利用这些漏洞控制服务器或导致服务不可用。 如果向0x01、0x02、0x03、0x04、0x05、0x31、0x32、0x33、0x34和0x35 LPD命令传送了超长参数的话,就可以触发这些溢出,导致执行任意指令;如果向0x53 LPD命令传送了畸形参数,还可能导致服务器终止。 SAP SAPlpd = 6.28 S...
SAPlpd < 6.29 Multiple Vulnerabilities
SAPlpd, a component of SAP GUI, is running on the remote host. According to its version number, the installation of SAPlpd running on the remote host is affected by several denial of service and buffer overflow vulnerabilities. An unauthenticated, remote attacker can leverage these issues to cras...
CVE-2008-0620
SAPlpd (SAPLPD) vulnerability CVE-2008-0620 affects SAPlpd in SAP GUI packages up to version 6.28/7.10 with SAPSprint prior to 1018. The issue arises when handling LPD commands: multiple buffer/overflow conditions are triggered by long parameters for commands 0x01–0x05, 0x31–0x35, potentially all...