SAP RFC_Start_Gui RFC Function Unspecified Buffer Overflow and Informaiton Vulnerabilities
BID:23313
Info
SAP RFC_Start_Gui RFC Function Unspecified Buffer Overflow and Informaiton Vulnerabilities
| Bugtraq ID: | 23313 |
| Class: | Unknown |
| CVE: |
CVE-2007-1915 CVE-2007-1914 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 04 2007 12:00AM |
| Updated: | Jul 06 2016 01:34PM |
| Credit: | Mariano Nuñez Di Croce reported this issue. |
| Vulnerable: |
SAP RFC Library 7.00 SAP RFC Library 6.40 |
| Not Vulnerable: | |
Discussion
SAP RFC_Start_Gui RFC Function Unspecified Buffer Overflow and Informaiton Vulnerabilities
The SAP RFC Library is prone to an unspecified buffer-overflow issue and an information-disclosure issue.
An attacker could exploit these issues to execute arbitrary code, cause the affected application to crash, or gain access to sensitive information.
The SAP RFC Library is prone to an unspecified buffer-overflow issue and an information-disclosure issue.
An attacker could exploit these issues to execute arbitrary code, cause the affected application to crash, or gain access to sensitive information.
Exploit / POC
SAP RFC_Start_Gui RFC Function Unspecified Buffer Overflow and Informaiton Vulnerabilities
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
SAP RFC_Start_Gui RFC Function Unspecified Buffer Overflow and Informaiton Vulnerabilities
Solution:
The vendor has released updates to address these issues. More information can be found in SAP Note 1003908. Please see the references for more information.
Solution:
The vendor has released updates to address these issues. More information can be found in SAP Note 1003908. Please see the references for more information.
References
SAP RFC_Start_Gui RFC Function Unspecified Buffer Overflow and Informaiton Vulnerabilities
References:
References:
- SAP Homepage (SAP)
- SAP RFC_START_PROGRAM RFC Function Multiple (CYBSEC)