Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2001-0363

Malware in sbrugna...

7.2CVSS6.4AI score0.00557EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-1025

Malware in sbrugna...

7.5CVSS6.4AI score0.01544EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-1084

Malware in sbrugna...

6.1CVSS6.3AI score0.008EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-1558

Malware in sbrugna...

7.5CVSS6.4AI score0.01317EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-14291

Malware in sbrugna...

8.8CVSS8.8AI score0.01333EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1559

Malware in sbrugna...

7.5CVSS6.4AI score0.02664EPSS
Exploits1References4
NVD
NVD
added 2019/06/12 5:29 p.m.16 views

CVE-2019-0311

Automotive Dealer Portal in SAP R/3 Enterprise Application versions: 600, 602, 603, 604, 605, 606, 616, 617 does not sufficiently encode user-controlled inputs, this makes it possible for an attacker to send unwanted scripts to the browser of the victim using unwanted input and execute malicious...

6.1CVSS6AI score0.008EPSS
Exploits0References2
Prion
Prion
added 2019/06/12 5:29 p.m.15 views

Cross site scripting

Automotive Dealer Portal in SAP R/3 Enterprise Application versions: 600, 602, 603, 604, 605, 606, 616, 617 does not sufficiently encode user-controlled inputs, this makes it possible for an attacker to send unwanted scripts to the browser of the victim using unwanted input and execute malicious...

4.3CVSS6AI score0.008EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/06/12 4:11 p.m.16 views

CVE-2019-0311

Automotive Dealer Portal in SAP R/3 Enterprise Application versions: 600, 602, 603, 604, 605, 606, 616, 617 does not sufficiently encode user-controlled inputs, this makes it possible for an attacker to send unwanted scripts to the browser of the victim using unwanted input and execute malicious...

6AI score0.008EPSS
Exploits0References2
NVD
NVD
added 2018/07/10 6:29 p.m.12 views

CVE-2018-2436

Executing transaction WRCK in SAP R/3 Enterprise Retail EHP6 does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges...

8.8CVSS8.9AI score0.01333EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2011/12/05 5:44 p.m.14 views

Cain & Abel v4.9.43 Released

Cain & Abel v4.9.43 Released Cain & Abel is a password recovery tool for Microsoft operating systems.It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using dictionary and brute force attacks, decoding scrambled passwords, revealing passwor...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2011/12/05 5:44 p.m.2 views

Cain & Abel v4.9.43 Released

Cain & Abel v4.9.43 Released Cain & Abel is a password recovery tool for Microsoft operating systems.It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using dictionary and brute force attacks, decoding scrambled passwords, revealing passwor...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2007/04/05 12:0 a.m.40 views

CYBSEC Release: SAP Security - Paper & Tool release

I am proud to announce the release of a White-paper and an open-source tool, both addressing security of SAP R/3 systems. The paper describes vulnerabilities discovered in the SAP RFC interface implementation and library, as well as some attacks that can be performed over SAP systems. The tool,...

7.3AI score
Exploits0
seebug.org
seebug.org
added 2006/12/10 12:0 a.m.26 views

SAP Internet Graphics Server远程缓冲区溢出漏洞

SAP Internet Graphics Server是SAP R/3企业环境的一个组件,可提供图形服务。 SAP Internet Graphics Server不正确处理用户提交的HTTP请求,远程攻击者可以利用漏洞进行缓冲区溢出攻击,可能以进程权限执行任意指令。 目前没有详细漏洞细节提供,成功利用漏洞可导致在UNIX系统下获得SAP系统管理员特权,而在windows下可导致获得SYSTEM权限。 SAP Internet Graphics Server 6.40 Patch 11 SAP Internet Graphics Server 6.40 SAP Internet...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2006/11/14 12:0 a.m.33 views

r3mote_unix_UDPexec.pl.txt

!/usr/bin/perl -w use IO::Socket; Unix version of the FX SAP R/3 gwrd vuln. We partially control a call to excve made by lnaxdm/sapsys Easily exploitable with local access Could be done remotely under some conditions 2003, FX of Phenoelit Win32 original code 2005, Nicob Unix version $|=1; die "Gi...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/07/25 12:0 a.m.30 views

SAP R/3 Internet Graphics Server directory traversal

Directory traversal on accesing htdocs folder...

2.1AI score
Exploits0References1Affected Software1
NVD
NVD
added 2004/04/15 4:0 a.m.16 views

CVE-2002-1578

The default installation of SAP R/3, when using Oracle and SQLnet V2 3.x, 4.x, and 6.10, allows remote attackers to obtain arbitrary, sensitive SAP data by directly connecting to the Oracle database and executing queries against the database, which is not password-protected...

7.5CVSS6.2AI score0.02664EPSS
Exploits1References3
NVD
NVD
added 2004/04/15 4:0 a.m.16 views

CVE-2003-1035

The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to conduct a brute force password guessing attack, which does not lock out the account like the SAPGUI does...

7.5CVSS6.9AI score0.01544EPSS
Exploits0References4
NVD
NVD
added 2004/04/15 4:0 a.m.15 views

CVE-2002-1577

SAP R/3 2.0B to 4.6D installs several clients with default users and passwords, which allows remote attackers to gain privileges via the 1 SAP, 2 SAPCPIC, 3 DDIC, 4 EARLYWATCH, or 5 TMSADM accounts...

7.5CVSS7AI score0.01317EPSS
Exploits0References2
Cvelist
Cvelist
added 2004/03/16 5:0 a.m.24 views

CVE-2002-1577

SAP R/3 2.0B to 4.6D installs several clients with default users and passwords, which allows remote attackers to gain privileges via the 1 SAP, 2 SAPCPIC, 3 DDIC, 4 EARLYWATCH, or 5 TMSADM accounts...

7AI score0.01317EPSS
Exploits0References2
Rows per page
Query Builder