15 matches found
CVE-2021-40499
CVE-2021-40499 affects SAP NetWeaver Application Server for ABAP (ABAP) printing services: SAP Cloud Print Manager and SAPSprint. The NVD entry states that versions 7.70, 7.70 PI, and 7.70 BYD are vulnerable to a code injection that can be executed by the application, allowing an attacker to cont...
CVE-2021-40499
Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
SAP NetWeaver Application Server 代码注入漏洞
SAP NetWeaver Application Server is an application server from SAP, Germany. A security vulnerability exists in SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP, which can be exploited by an attacker to inject code that can be executed by the application. As a...
SAPSprint 7.60 Unquoted Service Path
Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Date: 21-06-2021 Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path:...
SAPSprint 7.60 - (SAPSprint) Unquoted Service Path Vulnerability
Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path: C:\wmic service get...
SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path
Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Date: 21-06-2021 Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path:...
SAPlpd多个远程溢出及拒绝服务漏洞
BUGTRAQ ID: 27613 CVECAN ID: CVE-2008-0620,CVE-2008-0621 SAPlpd是SAP GUI软件包中所捆绑的Windows平台行市打印机守护程序。 SAPLPD服务程序在处理LPD命令时存在多个缓冲区溢出漏洞,远程攻击者可能利用这些漏洞控制服务器或导致服务不可用。 如果向0x01、0x02、0x03、0x04、0x05、0x31、0x32、0x33、0x34和0x35 LPD命令传送了超长参数的话,就可以触发这些溢出,导致执行任意指令;如果向0x53 LPD命令传送了畸形参数,还可能导致服务器终止。 SAP SAPlpd = 6.28 S...
Command injection
SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service crash via a 0x53 LPD command, which causes the server to terminate...
CVE-2008-0621
Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the 1 0x01, 2 0x02, 3 0x03, 4 0x04, and 5 0x05 LPD commands...
Buffer overflow
Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the 1 0x01, 2 0x02, 3 0x03, 4 0x04, and 5 0x05 LPD commands...
CVE-2008-0621
CVE-2008-0621 is a buffer-overflow vulnerability in SAPlpd (the SAP GUI print server) affecting SAPlpd 6.28 and earlier, included with SAP GUI 7.10 and SAPSprint before 1018. The issue arises when handling LPD commands (notably 0x01, 0x02, 0x03, 0x04, 0x05; related reports mention additional comm...
CVE-2008-0620
SAPlpd (SAPLPD) vulnerability CVE-2008-0620 affects SAPlpd in SAP GUI packages up to version 6.28/7.10 with SAPSprint prior to 1018. The issue arises when handling LPD commands: multiple buffer/overflow conditions are triggered by long parameters for commands 0x01–0x05, 0x31–0x35, potentially all...
CVE-2008-0620
SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service crash via a 0x53 LPD command, which causes the server to terminate...
CVE-2008-0621
Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the 1 0x01, 2 0x02, 3 0x03, 4 0x04, and 5 0x05 LPD commands...
CVE-2006-7220
Technical details about CVE-2006-7220 are not publicly provided in the connected documents. Current sources list an unspecified DoS via SAPLPD/SAPSPRINT without verifiable specifics. Monitor for updates.