SAP Solution Manager SAP_JTECHS Access Bypass Vulnerability
BID:68949
Info
SAP Solution Manager SAP_JTECHS Access Bypass Vulnerability
| Bugtraq ID: | 68949 |
| Class: | Access Validation Error |
| CVE: |
CVE-2014-5175 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 29 2014 12:00AM |
| Updated: | Aug 05 2014 12:19AM |
| Credit: | Nahuel D. Sánchez |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
SAP Solution Manager SAP_JTECHS Access Bypass Vulnerability
SAP Solution Manager is prone to an access-bypass vulnerability.
Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions.
SAP Solution Manager 7.1 is vulnerable.
SAP Solution Manager is prone to an access-bypass vulnerability.
Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions.
SAP Solution Manager 7.1 is vulnerable.
Exploit / POC
SAP Solution Manager SAP_JTECHS Access Bypass Vulnerability
An attacker can exploit this issue using a web browser.
An attacker can exploit this issue using a web browser.
Solution / Fix
SAP Solution Manager SAP_JTECHS Access Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
SAP Solution Manager SAP_JTECHS Access Bypass Vulnerability
References:
References: