3 matches found
[ERPSCAN-15-009] SAP Afaria 7 XcListener - Missing authorization check
ERPSCAN Research Advisory ERPSCAN-15-009 SAP Afaria 7 XcListener - Missing authorization check Application: SAP Afaria 7 Versions Affected: SAP Afaria 7, probably others Vendor URL: http://SAP.com Bugs: Missing authorization check Sent: 09.12.2014 Reported: 09.12.2014 Vendor response: 10.12.2014...
CVE-2015-2816
The CVE-2015-2816 issue affects SAP Afaria 7.0.6001.5 via the XcListener, which has a missing authorization check that can be exploited remotely (via crafted requests) to misuse service functionality and potentially cause DoS or information exposure. Technical details from ERPScan advisory show t...
SAP Afaria 7 XcListener - Missing authorization check
Application: SAP Afaria 7.0.6001.5 Vendor URL: http://www.sap.com Bugs: Missing authorization check Reported: 09.12.2014 Vendor response: 10.12.2014 Date of Public Advisory: 15.03.2015 Reference: SAP Security Note 2134905 Authors: Vahagn Vardanyan ERPScan Vulnerability information Class: DoS...