Published: 23/01/2020 Updated: 31/01/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packet to TCP ports 36NN and/or 39NN.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sap netweaver 7.01
sap netweaver 7.02
sap netweaver 7.30
sap netweaver 2004s

Core Security Technologies Advisory - Multiple vulnerabilities have been found in SAP Netweaver that could allow an unauthenticated remote attacker to execute arbitrary code and lead to denial of service conditions The vulnerabilities are triggered sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN (being NN ...

CWE-129 http://www.securityfocus.com/bid/57956 https://packetstormsecurity.com/files/cve/CVE-2013-1593 https://exchange.xforce.ibmcloud.com/vulnerabilities/82065 http://www.securitytracker.com/id/1028148 https://www.coresecurity.com/content/SAP-netweaver-msg-srv-multiple-vulnerabilities https://nvd.nist.gov https://packetstormsecurity.com/files/120350/SAP-Netweaver-Message-Server-Buffer-Overflow.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-1593

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect