Internet Transaction Server@* Security Vulnerabilities and Issues — Internet Transaction Server@* CVE List

Lucene search

SapInternet Transaction Server*

3 matches found

CVE•added 2004/04/15 4:0 a.m.•43 views

CVE-2003-1038

The AGate component for SAP Internet Transaction Server (ITS) allows remote attackers to obtain sensitive information via a ~command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames.

5CVSS6.6AI score0.00346EPSS

CVE•added 2004/04/15 4:0 a.m.•39 views

CVE-2003-1037

Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary code via a high "trace level."

7.5CVSS8AI score0.01922EPSS

CVE•added 2004/04/15 4:0 a.m.•34 views

CVE-2003-1036

Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.

7.5CVSS8.2AI score0.03077EPSS