SAP RFC_Set_Reg_Server_Property RFC Function Denial of Service Vulnerability
BID:23309
Info
SAP RFC_Set_Reg_Server_Property RFC Function Denial of Service Vulnerability
| Bugtraq ID: | 23309 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 04 2007 12:00AM |
| Updated: | Apr 05 2007 07:52PM |
| Credit: | Victor Montero and Gustavo Kunst are credited with the discovery of this vulnerability. |
| Vulnerable: |
SAP RFC Library 7.00 SAP RFC Library 6.40 |
| Not Vulnerable: | |
Discussion
SAP RFC_Set_Reg_Server_Property RFC Function Denial of Service Vulnerability
The SAP RFC Library is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to deny service to legitimate users of valid SAP RFC servers.
The SAP RFC Library is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to deny service to legitimate users of valid SAP RFC servers.
Exploit / POC
SAP RFC_Set_Reg_Server_Property RFC Function Denial of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
SAP RFC_Set_Reg_Server_Property RFC Function Denial of Service Vulnerability
Solution:
The vendor has released fixes to address this issue. Please see the references for more information.
Solution:
The vendor has released fixes to address this issue. Please see the references for more information.
References
SAP RFC_Set_Reg_Server_Property RFC Function Denial of Service Vulnerability
References:
References:
- SAP Homepage (SAP)
- CYBSEC Security Pre-Advisory: SAP RFC_SET_REG_SERVER_PROPERTY RFC Function Denia (CYBSEC Advisories
)