SAP NetWeaver Multiple Remote Vulnerabilities
BID:51645
Info
SAP NetWeaver Multiple Remote Vulnerabilities
| Bugtraq ID: | 51645 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 24 2012 12:00AM |
| Updated: | Jan 25 2012 09:30PM |
| Credit: | Alexander Polyakov, Alexey Tuyrin, Neyolov Evgeny and Dmitriy Evdokimov of DSecRG |
| Vulnerable: |
SAP NetWeaver Text Container Administration Application 7.20 sp1 pat 0 SAP NetWeaver RWB 0 SAP NetWeaver Business Communication Broker 0 SAP NetWeaver 7.02 sp6 0 |
| Not Vulnerable: | |
Discussion
SAP NetWeaver Multiple Remote Vulnerabilities
SAP NetWeaver is prone to multiple cross-site scripting vulnerabilities, multiple HTML-injection vulnerabilities, a security-bypass vulnerability, and an information-disclosure vulnerability.
Attackers can exploit these issues to execute arbitrary script code in the context of the website, steal cookie-based authentication information, disclose sensitive information, or bypass certain security restrictions.
SAP NetWeaver is prone to multiple cross-site scripting vulnerabilities, multiple HTML-injection vulnerabilities, a security-bypass vulnerability, and an information-disclosure vulnerability.
Attackers can exploit these issues to execute arbitrary script code in the context of the website, steal cookie-based authentication information, disclose sensitive information, or bypass certain security restrictions.
Exploit / POC
SAP NetWeaver Multiple Remote Vulnerabilities
An attacker can exploit these issues through readily available tools. To exploit a cross-site scripting issue, the attacker must entice an unsuspecting victim to follow a malicious URI.
An attacker can exploit these issues through readily available tools. To exploit a cross-site scripting issue, the attacker must entice an unsuspecting victim to follow a malicious URI.
Solution / Fix
SAP NetWeaver Multiple Remote Vulnerabilities
Solution:
Vendor updates are available. Please see the references for more information.
Solution:
Vendor updates are available. Please see the references for more information.
References
SAP NetWeaver Multiple Remote Vulnerabilities
References:
References:
- [DSECRG-12-008] SAP Netweaver RWB - anouthorised acess (dsecrg)
- [DSECRG-12-009] SAP NetWeaver PFL_CHECK_OS_FILE_EXISTENCE - missing authorisatio (dsecrg)
- [DSECRG-12-010] SAP TesConteinerAdmin service - Stored XSS (dsecrg)
- [DSECRG-12-011] SAP NetWaver Business Communication Broker - multiple XSS (dsecrg)
- SAP Homepage (SAP)
- SAP Security Note 1567389 (SAP)
- SAP Security Note 1585652 (SAP)
- SAP Security Note 1591146 (SAP)
- SAP Security Note 1591749 (SAP)