14 matches found
CVE-2017-9843
SAP NetWeaver AS ABAP 7.40 allows remote authenticated users with certain privileges to cause a denial of service process crash via vectors involving disp+work.exe, aka SAP Security Note 2406841...
CVE-2017-9843
SAP NetWeaver AS ABAP 7.40 allows remote authenticated users with certain privileges to cause a denial of service process crash via vectors involving disp+work.exe, aka SAP Security Note 2406841...
SAP NetWeaver AS ABAP disp+work crash
Application: SAP NetWeaver ABAP Versions Affected: SAP KERNEL 7.40 64BIT, disp+work.exe 7400.12.21.30308 Vendor URL: SAP Bugs: DoS Reported: 15.12.2016 Vendor response: 16.12.2016 Date of Public Advisory: 14.03.2017 Reference: SAP Security Note 2406841 Author: Vahagn Vardanyan ERPScan VULNERABILI...
SAP NetWeaver disp+work anonymous denial of service
Application: SAP NetWeaver Versions Affected: SAP KERNEL 7.40 64BIT, disp+work.exe 7400.12.21.30308 Vendor URL: SAP Bugs: DoS Reported: 13.12.2016 Vendor response: 14.12.2016 Date of Public Advisory: 14.03.2017 Reference: SAP Security Note 2405918 Author: Vahagn Vardanyan ERPScan VULNERABILITY...
CVE-2012-2611
The DiagTraceR3Info function in the Dialog processor in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2, when a certain Developer Trace configuration is enabled, allows remote attackers to execute arbitrary code via a crafted SAP Diag packe...
CVE-2012-2511
The DiagTraceAtoms function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...
CVE-2012-2512
The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...
Design/Logic Flaw
The Diaginput function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...
Design/Logic Flaw
The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...
Design/Logic Flaw
The DiagTraceAtoms function in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2 allows remote attackers to cause a denial of service daemon crash via a crafted SAP Diag packet...
CVE-2012-2611
CVE-2012-2611 affects SAP NetWeaver Dispatcher where the DiagTraceR3Info function in disp+work.exe can overflow a stack buffer when Developer Traces are enabled at level 2 or higher, enabling remote code execution via crafted SAP Diag packets. Affected: SAP NetWeaver Dispatcher (7.0 EHP1/EHP2) wi...
CVE-2012-2612
CVE-2012-2612 refers to a Denial of Service in SAP NetWeaver Dispatcher (disp+work.exe) 7.0 EHP1/EHP2 where the DiagTraceHex function can be triggered by crafted SAP Diag packets to cause a daemon crash. Affected component: Dispatcher service within SAP NetWeaver 7.0 EHP1/EHP2 (disp+work.exe v701...
CVE-2012-2513
CVE-2012-2513 affects SAP NetWeaver Dispatcher (disp+work.exe) in SAP NetWeaver 7.0 EHP1/EHP2. The vulnerability is triggered in the vulnerable dispatcher by sending specially crafted SAP Diag packets, targeting the Diaginput function, potentially causing a remote denial of service (daemon crash)...
CVE-2012-2511
CVE-2012-2511 affects SAP NetWeaver Dispatcher 7.0 EHP1/EHP2, specifically the disp+work.exe components (versions v7010.29.15.58313 and v7200.70.18.23869). The DiagTraceAtoms function is the root cause: processing crafted SAP Diag packets in the Dispatcher can trigger a remote, unauthenticated de...