12 matches found
EUVD-2003-0740
Malware in sbrugna...
EUVD-2003-0739
Malware in sbrugna...
EUVD-2003-0738
Malware in sbrugna...
SAP Internet Transaction Server Directory Traversal - Ver2 (CVE-2003-0748)
A directory traversal vulnerability has been reported in wgate.dll for SAP Internet Transaction Server ITS. Successful exploitation of this vulnerability would allow a remote attacker to list directories on the affected system...
Cross site scripting
Cross-site scripting XSS vulnerability in WGate in SAP Internet Transaction Server ITS 6.20 allows remote attackers to inject arbitrary web script or HTML via 1 a "" sequence in the service parameter to wgate.dll, or 2 Javascript splicing in the query string, a different vector than CVE-2006-5114...
CVE-2003-0748
Directory traversal vulnerability in wgate.dll for SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to read arbitrary files via ..\ dot-dot backslash sequences in the theme parameter and a template parameter with a filename followed by space characters, which can preven...
CVE-2003-0747
wgate.dll in SAP Internet Transaction Server ITS 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such as directory structure and operating system via incorrect parameters 1 service, 2 templatelanguage, 3 language, 4 theme, or 5 template, which leaks the...
CVE-2003-0748
CVE-2003-0748 describes a directory traversal in SAP ITS 4620.2.0.323011 via wgate.dll, allowing remote readers to access arbitrary files through dot-dot backslash sequences in the ~theme parameter and a mis-handled ~template parameter with a filename followed by spaces that can prevent a .html e...
CVE-2003-0747
CVE-2003-0747 affects SAP Internet Transaction Server (ITS) 4620.2.0.323011 via its wgate.dll. The vulnerability arises from incorrect parameters (~service, ~templatelanguage, ~language, ~theme, ~template) that cause error messages to leak potentially sensitive information, including directory st...
CVE-2003-0749
CVE-2003-0749 describes an XSS vulnerability in SAP Internet Transaction Server (ITS) involving wgate.dll. The affected component is wgate.dll (SAP ITS) with version details in the description, and the vulnerability is exploitable via the ~service parameter to inject arbitrary web script and stea...
SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/8517/info The 'wgate.dll' componenet of SAP Internet Transaction Server has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of sufficient sanitization performed on data supplied to the 'wgate.dll' library. Exploitation...
SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting
SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting source: https://www.securityfocus.com/bid/8517/info The 'wgate.dll' componenet of SAP Internet Transaction Server has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of...