SAP Adapter Monitor - information disclosure

Application: SAP NetWeaver Vendor URL: Bugs: Information disclosure Risk: High Exploits: YES Reported: 06.12.2011 Vendor response: 06.12.2011 Date of Public Advisory: 17.12.2011 Reference: SAP Security Note 1445998 Description Information disclosure in com.sap.aii.mdt.amt.web.AMTPageProcessor...

SAP NetWeaver RFC WSDL - XSS

Application: SAP NetWeaver Versions Affected: SAP NetWeaver 6.40, 7.02 and maybe others Vendor URL: http://www.sap.com Bugs: XSS Exploits: YES Reported: 13.05.2011 Vendor response: 15.05.2011 Date of Public Advisory: 13.06.2012 Reference: SAP Security Note 1614834 Author: Alexey Tyurin ERPScan...

SAP Netweaver ABAP - XML External Entity

Application: SAP NetWeaver ABAP Vendor URL: Bugs: XXE, Unauthorized access Risk: High Exploits: YES Reported: 13.05.2011 Vendor response: 17.05.2011 Patched: 13.11.2011 Date of Public Advisory: 13.03.2012 Reference: SAP Security Note 1594475 Author: Alexey Tyurin ERPScan Description SAP Netweaver...

SAP NetWeaver Mobile Infrastructure Web Console - XSS

Application: SAP NetWeaver 7.0 Versions Affected: SAP NetWeaver Mobile Infrastructure Web Console Vendor URL: http://www.sap.com Bugs: XSS Exploits: YES Reported: 13.05.2011 Vendor response: 15.05.2011 Date of Public Advisory: 30.06.2012 Reference: SAP Security Note 1590866 Author: Dmitriy...

SAP NetWeaver EPS - Multiple missing auth check

Application: SAP NetWeaver ABAP Versions Affected: SAP NetWeaver ABAP Vendor URL: http://www.sap.com Bugs:Auth bypass, directory traversal, smbrelay Exploits: YES Reported: 13.05.2011 Vendor response: 15.05.2011 Date of Public Advisory: 17.06.2012 Author: Alexey Tyurin ERPScan Description A...

SAP NetWeaver PFL_CHECK_OS_FILE_EXISTENCE - missing authorization check and SMB Relay vulnerability

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Auth bypass, Verb tampering Exploits: YES Reported: 13.05.2011 Vendor response:15.05.2011 Date of Public Advisory:20.01.2011 Author: Alexey Tyurin Description Missing authorization check in FRC functio...

SAP NetWeaver RZL_READ_DIR_LOCAL - missing authorization check and SMB Relay vulnerability

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Missing auth check Exploits: YES Reported: 13.05.2011 Vendor response:15.05.2011 Date of Public Advisory:13.03.2012 Reference: SAP Security Note 1595074 Author:Alexey Tyurin ERPScan Description Missing...

SAP Crystal Reports 2008 - Multiple XSS

Application: SAP Crystal Reports Vendor URL: Bugs: XSS Risk: Medium Exploits: YES Reported: 13.05.2011 Vendor response: 17.05.2011 Patched: 13.11.2011 Date of Public Advisory: 13.03.2012 Reference: SAP Security Note 1647871 Author: Dmitriy Chastuchin ERPScan Description XSS in MessagingSystem SAP...

SAP TesContainerAdmin service - Stored XSS

Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: Bugs: Multiple Stored XSS Risk: High Exploits: YES Reported: 13.05.2011 Vendor response: 14.05.2011 Date of Public Advisory: 20.01.2012 Reference: SAP Security Note 1591749...

SAP NetWeaver BW - XML External Entity

Application: SAP BW Versions Affected: SAP BASIS 6.40/7.02 maybe others Vendor URL: http://www.sap.com Bugs:XML External Entity Exploits: YES Reported: 13.05.2011 Vendor response: 14.05.2011 Date of Public Advisory: 30.06.2012 Reference: SAP Security Note 1597066 Author: Alexey Tyurin ERPScan...

SAP Netweaver CCMS - XML Entity Expansion DOS

Application: SAP NetWeaver Vendor URL: Bugs: DOS Risk: High Exploits: YES Reported: 13.05.2011 Vendor response: 15.05.2011 Patched: 13.11.2011 Date of Public Advisory: 13.03.2012 Reference: SAP Security Note 1594475 Author: Alexey Tyurin ERPScan Description SAP Netweaver – XML Entity Expansion It...

SAP XI - authentication bypass

Application: SAP NetWeaver XI Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs: Security Bypass Exploits: YES Reported: 21.03.2011 Vendor response: 22.03.2011 Date of Public Advisory: 11.09.2012 Reference: SAP Security Note 1707494 Authors: Alexander Polyakov, Alexey Tyurin,...

SAP NetWeaver - Authentication bypass (Verb Tampering)

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Auth bypass, Verb tampering Exploits: YES Reported: 14.03.2011 Vendor response:15.03.2011 Date of Public Advisory:11.11.2011 CVSS: 10 by ERPSCAN 7.3 by SAP Author:Alexandr Polyakov Description...

SAP NetWeaver Runtime — Multiple XSS

Description SAP NetWeaver Integration Directory has linked XSS vulnerability: XSS in errormsg.jsp XSS in ViewCaches.jsp Stored XSS in ViewLogger.jsp POST and Stored XSS in ShowMemLog Business Risk An attacker can use XSS vulnerability by sending a link on malicious script to an unaware user via a...

SAP BW Doc - Multiple XSS

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Linked XSS Vulnerability Exploits: YES Reported: 14.03.2011 Vendor response:16.03.2011 Date of Public Advisory:11.11.2011 CVSS: 4.3 Author: Alexandr Polyakov and Dmitriy Chastuchin Description BW DOC...

SAP RSTXSCRP report - smb relay vulnerability

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Path traversal, SMBRelay Exploits: YES Reported: 14.03.2011 Vendor response:16.03.2011 Date of Public Advisory:11.11.2011 CVSS: 2.1 Author: Dmitriy Chastuchin Description SAP RSTXSCRP Report has path...

SAP NetWeaver SPML - XML CSRF user creation

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Command execution Exploits: YES Reported: 14.03.2011 Vendor response:16.03.2011 Date of Public Advisory:11.11.2011 CVSS: 7.3 Author: Alexandr Polyakov Description Attacker can create a new user in J2EE...

SAP Application Administration - local file read

Application: SAP NetWeaver Vendor URL: Bugs: Local file read Risk: High Exploits: YES Reported: 14.03.2011 Vendor response: 15.03.2011 Date of Public Advisory: 17.02.2012 Reference: SAP Security Note 1585527 Description SAP NetWeaver 7.0 Application Administration com.sap.ipc.webapp.ipc has local...

SAP NetWeaver TH_GREP module - Code injection vulnerability (NEW)

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Command execution Exploits: YES Reported: 14.03.2011 Vendor response:16.03.2011 Date of Public Advisory:11.11.2011 CVSS: 6.0 Author: Alexey Tyurin Description THGREP report is vulnerable for command...

SAP GUI BAPI Explorer- Unauthorized execution of function

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Unauthorized execution Exploits: YES Reported: 15.02.2011 Vendor response:16.02.2011 Date of Public Advisory:11.11.2011 Author: Dmitriy Chastuchin Description SAP GUI BAPI Explorer has stored XSS which...

SAP NetWeaver RWB - unauthorized access

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Auth bypass Exploits: YES Reported: 15.02.2011 Vendor response:16.02.2011 Date of Public Advisory:20.01.2011 Author:Alexandr Polyakov Description Unauthorized access is possible to some Runtime Workben...

SAP NetWeaver Monitoring Systeminfo - Multiple XSS

Application: SAP NetWeaver Vendor URL: Bugs: XSS Risk: Medium Exploits: YES Reported: 15.02.2011 Vendor response: 17.02.2011 Patched: 13.11.2011 Date of Public Advisory: 13.03.2012 Reference: SAP Security Note 1568003 Author: Alexander Polyakov ERPScan Description SAP NetWeaver Monitoring...

SAP NetWeaver ipcpricing - information disclose

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:Information disclosure Exploits: YES Reported: 27.01.2011 Vendor response:28.01.2011 Date of Public Advisory: 15.09.2011 Author: Dmitriy Chastuchin Description com.sap.ipc.webapp.ipcpricing application...

SAP RFC EPS_DELETE_FILE — Authorisation bypass, smbrelay

Application: SAP NetWeaver ABAP Versions Affected: SAP NetWeaver ABAP Vendor URL: http://www.sap.com Bugs:Auth bypass, directory traversal, smbrelay Exploits: YES Reported: 15.01.2011 Vendor response: 25.01.2011 Date of Public Advisory: 22.08.2011 Author: Alexey Sintsov Description Security...

SAP NetWeaver Trust Center Service - XSS

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:XSS Exploits: YES Reported: 11.05.2010 Vendor response: 12.05.2011 Date of Public Advisory: 17.06.2011 CVSS: 5.0 Author: Dmitriy Evdokimov Description SAP NetWeaver Trust Center Service has linked XSS...

SAP NetWeaver JavaMailExamples - XSS

Application: SAP NetWeaver Versions Affected: SAP NetWeaver JavaMailExamples Vendor URL: http://www.sap.com Bugs:XSS Exploits: YES Reported: 11.05.2010 Vendor response: 12.05.2010 Date of Public Advisory: 19.08.2011 Author: Dmitriy Evdokimov Description SAP Netweaver JavaMailExamples has linked X...

SAP NetWeaver Data Archiving Service — Multiple XSS

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Data Archiving Service 6.4-7.3 Vendor URL: http://www.sap.com Bugs: Linked XSS and Stored XSS Exploits: YES Reported: 11.05.2010 Vendor response: 11.05.2010 Date of Public Advisory: 12.04.2011 Author: Dmitriy Evdokimov Description SAP...

SAP Crystal Report Server pubDBLogon - Linked ХSS vulnerability

Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Bugs:Linked XSS Vulnerability Exploits: YES Reported: 09.12.2010 Vendor response:10.12.2010 Date of Public Advisory:15.09.2011 CVSS: 4.3 Author: Dmitriy Chastuchin...

SAP NetWeaver SOAP RFC – Denial of Service / Integer overflow

Application: SAP NetWeaver Kernel Versions Affected: ernel 4.6 – 7.2 Vendor URL: http://www.sap.com Bugs:XML Attribute Blow-up attack Exploits: YES Reported: 09.12.2010 Vendor response: 10.12.2010 Solution:YES Date of Public Advisory: 20.07.2011 Author: Alexey Sintsov Description It is possible t...

SAP NetWeaver SLD - Information Disclosure

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs: Information disclose Exploits: YES Reported: 09.06.2010 Vendor response: 10.06.2010 Date of Public Advisory: 17.06.2011 CVSS: 5.0 Author:Alexander Polyakov Description Information disclosure...

NetWeaver BCB – Missing Authorization / Information disclosure

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Business Communication Broker Vendor URL: http://www.sap.com Bugs: Information disclose Reported:09.06.2010 Vendor response: 10.06.2010 Date of Public Advisory: 17.06.2011 CVSS: 7.5 Reported:01.04.2010 Vendor response:02.04.2010 Date of...

SAP NetWeaver Integration Directory — Multiple XSS

Application: SAP NetWeaver XI Versions Affected: SAP NetWeaver XI Vendor URL: Bugs: XSS Exploits: YES Reported: 09.06.2010 Vendor response: 10.06.2010 Date of Public Advisory: 09.03.2011 CVE-number: Author: Dmitriy Evdokimov Description SAP NetWeaver Integration Directory has multiple linked XSS...

SAP Crystal Reports 2008 — ActiveX Insecure Methods

Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Exploits: YES Bugs: Insecure methods Reported: 09.03.2010 Vendor response: 10.03.2010 Date of SAP Security Note Published: 8.10.2010 Date of Public Advisory: 14.01.2011...

SAP GUI (SAPGUI) — DLL hijacking

Application: SAP GUI Versions Affected: 6.4 — 7.2 Vendor URL: Bugs: DLL hijacking Exploits: YES Reported: 24.08.2010 Vendor response: 26.08.2010 Date of Public Advisory: 09.03.2011 CVE-number: Author: Alexey Sintsov, Alexandr Polyakov Description SAP Front End applications SAPGui.exe are vulnerab...

SAP NetWeaver - Unauthorized logon page

Application: SAP NetWeaver Versions Affected: 7.00 7.0014.20050509144048.0000 Vendor URL: http://www.sap.com Bugs: Missing Authorization Check Exploits: NO Reported: 20.08.2010 Vendor response: 23.08.2010 Date of Public Advisory: 12.02.2014 Reference: SAP Security Note 1860923 Author: Alexander...

SAP NetWeaver J2EE Engine - Authentication bypass

Application: SAP NetWeaver Versions Affected: SAP NetWeaver Vendor URL: http://www.sap.com Bugs:XSS Exploits: YES Reported: 20.08.2010 Vendor response: 23.08.2010 Date of Public Advisory: 17.06.2011 CVSS: 9.0 Author:Alexander Polyakov Description Authentication bypass vulnerability in SAP NetWeav...

SAP GUI — Buffer overflow

Application: SAP GUI Versions Affected: 7.1, 7.2 Vendor URL: http://www.sap.com Bugs: Buffer Overflow Reported: 20.08.2010 Vendor response: 23.08.2010 Date of Public Advisory: 12.04.2011 Author: Dmitry Chastuhin Description Attacker can construct saplogon.ini file which contains vulnerable tag...

SAP NetWeaver Portal IView - XSS

Application: SAP NetWeaver Portal Vendor URL: Bugs: XSS Risk: Medium Exploits: YES Reported: 29.07.2010 Vendor response: 30.07.2010 Patched: 13.03.2012 Date of Public Advisory: 17.06.2012 Reference: SAP Security Note 1656549 Author: Dmitriy Chastuchin ERPScan Description SAP NetWeaver Portal...

SAP NetWeaver Logviewer - Security Check Bypass

Application: SAP NetWeaver Logviewer Versions Affected: SAP NetWeaver Logviewer 6.30 Vendor URL: http://www.sap.com Bugs: Security Bypass Exploits: YES Reported: 24.06.2010 Vendor response: 25.06.2010 Date of SAP Security Note Published: 12.03.2013 Date of Public Advisory: 13.03.2013 Reference: S...

SAP Crystal Reports 2008 — Multiple XSS

Application: SAP Crystal Report Server 2008 Versions Affected: AP Crystal Report Server 2008 Vendor URL: http://www.sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 06.08.2010 Vendor response: 07.08.2010 Date of Public Advisory: 09.03.2011 Author: Dmitriy Chastuhin Description...

SAP NetWeaver Workflow Modeler - Multiple XSS

Application: SAP NetWeaver Workflow Modeler Versions Affected: SAP NetWeaver NW2004s SP6 Workflow Modeler Vendor URL: http://www.sap.com Bugs: XSS Exploits: YES Reported: 06.08.2010 Vendor response: 07.08.2010 Date of Public Advisory: 12.02.2014 Reference: SAP Security Note 1860923 Author:...

SAP NetWeaver logon.html — XSS

Application: SAP NetWeaver Versions Affected: SAP NetWeaver SAPBASIS 620-730 Vendor URL: Bugs: XSS Exploits: YES Reported: 05.02.2010 Vendor response: 06.02.2010 Date of Public Advisory: 09.03.2011 CVE-number: Author: Alexey Sintsov Description SAP NetWeaver BSP logon page has linked XSS...

SAP NetWeaver XSS Vulnerability in ICF

Application: SAP NetWeaver Versions Affected: SAP BASIS 6.4-7.2 Vendor URL: Bugs: Buffer Overflow Exploits: XSS Reported: 05.02.2010 Date of Public Advisory: 15.09.2010 Author: Alexey Sintsov Description SAP NetWeaver ICF BSP has linked XSS vulnerability. The vulnerability was found at...

Lotus Domino Web Administrator - XSS

Application: Lotus Domino Versions Affected: Lotus Domino Web Administrator 6.5 and 8.5.1 Vendor URL: IBM Bugs: XSS Exploits: YES Reported: 22.04.2010 Vendor response: 22.04.2010 Date of Public Advisory: 24.03.2013 Reference: IBM CVE number: CVE-2013-0488 Author: Dmitry Chastukhin ERPScan...

Lotus Domino Web Administrator - Cross Site Command Execution

Application: Lotus Domino Versions Affected: Lotus Domino Web Administrator 6.5 and 8.5.1 Vendor URL: IBM Bugs: CSRF, Command execution Exploits: YES Reported: 22.04.2010 Vendor response: 22.04.2010 Date of Public Advisory: 24.03.2013 Reference: IBM CVE number: CVE-2013-0489 Author: Alexander...

SAP Crystal Reports 2008 — actionNavjsp_xss

Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 04.03.2010 Vendor response: 05.03.2010 Date of SAP Security Note Published: 08.10.2010 Date of Public Advisory:...

SAP Crystal Reports 2008 — Directory Traversal

Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Bugs: Directory Traversal File Read Exploits: YES Reported: 29.03.2010 Vendor response: 30.03.2010 Date of SAP Security Note Published: 08.10.2010 Date of Public Advisory:...

SAP Netweaver XRFC — Stack Overflow

Application: SAP BASIS Versions Affected: SAP XRFC 6.40/7.00 may be others Vendor URL: Bugs: Stack Overflow Exploits: YES DoS PoC Reported: 29.03.2010 Vendor response: 29.03.2010 Date of Public Advisory: 09.11.2010 Author: Alexey Sintsov Description It is possible to call stack overflow via RFC...

Oracle Document Capture empop3.dll — insecure method

Application: Oracle Document Capture Versions Affected: 6.4 — 7.2 Vendor URL: http://www.oracle.com Bugs: Insecure method, File overwriting, File deleting Exploits: YES Reported: 22.03.2010 Vendor response: 31.03.2010 Date of Public Advisory: 24.01.2011 CVE-number:CVE-2010-3591 Author: Evdokimov...

Oracle Document Capture Actbar2.ocx — Insecure Method

Application: Oracle Document Capture Versions Affected: Release 10gR3 Vendor URL: www.oracle.com Bugs: Insecure method, File overwriting Exploits: YES Reported: 22.03.2010 Vendor response: 31.03.2010 Date of Public Advisory: 24.01.2011 Author: Evdokimov Dmitriy Description ActiveX components...