Published: 25/08/2010 Updated: 10/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Subscribe to Business One 2005-a

Stack-based buffer overflow in NT_Naming_Service.exe in SAP Business One 2005 A 6.80.123 and 6.80.320 allows remote malicious users to execute arbitrary code via a long GIOP request to TCP port 30000.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sap business one 2005-a 6.80.320
sap business one 2005-a 6.80.123

## # $Id: sap_2005_licenserb 11180 2010-11-30 20:19:18Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' clas ...

#!/usr/bin/python import socket, time #########################################INFO################################################ # NT_Naming_Serviceexe (License Manager 2005 for SAP Business One 2005-A) is # # vulnerable to a stack-based buffer overflow allowing for full system compromise by # # an unauthenticated user th ...

CWE-119 http://secunia.com/advisories/36103 http://www.vupen.com/english/advisories/2009/2170 http://www.securityfocus.com/bid/35933 http://www.securitytracker.com/id?1022655 https://exchange.xforce.ibmcloud.com/vulnerabilities/52256 http://www.exploit-db.com/exploits/9319 http://www.securityfocus.com/archive/1/505489/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/16423/

CVE-2009-4988

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect