Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-4815

Published: 31/12/2005 Updated: 19/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Sap

Vulnerability Summary

SAP 6.4 prior to 6.40 patch 4, 6.2 prior to 6.20 patch 1364, 4.6 prior to 4.6D patch 1767, 45 prior to 45B patch 913, 40 prior to 40B patch 1008, and 31 prior to 31I patch 735 do not properly restrict process execution by lnaxdm/sapsys, which allows remote malicious users to execute arbitrary code via a certain UDP packet that ends with the name of a local executable file, aka the "FX SAP R/3 gwrd vuln."

Vulnerable Product Search on Vulmon Subscribe to Product

sap sap r 3 40_before_patch_1008

sap sap r 3 45_before_patch_913

sap sap r 3 6.2_before_patch_1364

sap sap r 3 6.4_before_patch_4

sap sap r 3 31_before_31i_patch_735

sap sap r 3 4.6_before_patch_1767

References

NVD-CWE-Otherhttp://lists.virus.org/darklab-0509/msg00011.htmlhttp://lists.virus.org/darklab-0509/msg00017.htmlhttp://lists.virus.org/darklab-0509/msg00018.htmlhttp://lists.darklab.org/pipermail/darklab/2006-January/000209.htmlhttp://www.securityfocus.com/archive/1/451378/100/0/threadedhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook