CVE-2021-47985

Brother SAPSprint 7.60 contains an unquoted service path vulnerability in the SAPSprint service binary that allows local attackers to escalate privileges. Attackers can place a malicious executable in the Program Files directory path to be executed with LocalSystem privileges when the service...

EUVD-2021-34851

Brother SAPSprint 7.60 contains an unquoted service path vulnerability in the SAPSprint service binary that allows local attackers to escalate privileges. Attackers can place a malicious executable in the Program Files directory path to be executed with LocalSystem privileges when the service...

CVE-2021-47985

Summary: CVE-2021-47985 affects Brother SAPSprint 7.60 and is an unquoted service path vulnerability in the SAPSprint service binary, enabling local privilege escalation. An attacker can drop a malicious executable in the Program Files path to run with LocalSystem privileges when the service star...

CVE-2021-47985 Brother SAPSprint 7.60 Unquoted Service Path Privilege Escalation

Brother SAPSprint 7.60 contains an unquoted service path vulnerability in the SAPSprint service binary that allows local attackers to escalate privileges. Attackers can place a malicious executable in the Program Files directory path to be executed with LocalSystem privileges when the service...

PT-2026-50920

Name of the Vulnerable Software and Affected Versions Brother SAPSprint version 7.60 Description An unquoted service path issue exists in the SAPSprint service binary. This allows local attackers to escalate privileges by placing a malicious executable in the Program Files directory path, which i...

CVE-2021-40499

Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...

CVE-2021-40499

CVE-2021-40499 affects SAP NetWeaver Application Server for ABAP (ABAP) printing services: SAP Cloud Print Manager and SAPSprint. The NVD entry states that versions 7.70, 7.70 PI, and 7.70 BYD are vulnerable to a code injection that can be executed by the application, allowing an attacker to cont...

SAP NetWeaver Application Server 代码注入漏洞

SAP NetWeaver Application Server is an application server from SAP, Germany. A security vulnerability exists in SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP, which can be exploited by an attacker to inject code that can be executed by the application. As a...

SAPSprint 7.60 - (SAPSprint) Unquoted Service Path Vulnerability

Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path: C:\wmic service get...

SAPSprint 7.60 Unquoted Service Path

Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Date: 21-06-2021 Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path:...

SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path

Exploit Title: SAPSprint 7.60 - 'SAPSprint' Unquoted Service Path Discovery by: Brian Rodriguez Date: 21-06-2021 Vendor Homepage: https://brother.com/ Tested Version: 7.60 Vulnerability Type: Unquoted Service Path Tested on: Windows 10 Enterprise 64 bits Step to discover Unquoted Service Path:...

SAPlpd多个远程溢出及拒绝服务漏洞

BUGTRAQ ID: 27613 CVECAN ID: CVE-2008-0620,CVE-2008-0621 SAPlpd是SAP GUI软件包中所捆绑的Windows平台行市打印机守护程序。 SAPLPD服务程序在处理LPD命令时存在多个缓冲区溢出漏洞，远程攻击者可能利用这些漏洞控制服务器或导致服务不可用。 如果向0x01、0x02、0x03、0x04、0x05、0x31、0x32、0x33、0x34和0x35 LPD命令传送了超长参数的话，就可以触发这些溢出，导致执行任意指令；如果向0x53 LPD命令传送了畸形参数，还可能导致服务器终止。 SAP SAPlpd = 6.28 S...

Buffer overflow

Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the 1 0x01, 2 0x02, 3 0x03, 4 0x04, and 5 0x05 LPD commands...

CVE-2008-0621

Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the 1 0x01, 2 0x02, 3 0x03, 4 0x04, and 5 0x05 LPD commands...

Command injection

SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service crash via a 0x53 LPD command, which causes the server to terminate...

CVE-2008-0621

CVE-2008-0621 is a buffer-overflow vulnerability in SAPlpd (the SAP GUI print server) affecting SAPlpd 6.28 and earlier, included with SAP GUI 7.10 and SAPSprint before 1018. The issue arises when handling LPD commands (notably 0x01, 0x02, 0x03, 0x04, 0x05; related reports mention additional comm...

CVE-2008-0621

Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the 1 0x01, 2 0x02, 3 0x03, 4 0x04, and 5 0x05 LPD commands...

CVE-2008-0620

SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service crash via a 0x53 LPD command, which causes the server to terminate...

CVE-2008-0620

SAPlpd (SAPLPD) vulnerability CVE-2008-0620 affects SAPlpd in SAP GUI packages up to version 6.28/7.10 with SAPSprint prior to 1018. The issue arises when handling LPD commands: multiple buffer/overflow conditions are triggered by long parameters for commands 0x01–0x05, 0x31–0x35, potentially all...

CVE-2006-7220

Technical details about CVE-2006-7220 are not publicly provided in the connected documents. Current sources list an unspecified DoS via SAPLPD/SAPSPRINT without verifiable specifics. Monitor for updates.