The passwordCheck function in SAP Router 721 patch 117, 720 patch 411, 710 patch 029, and previous versions terminates validation of a Route Permission Table entry password upon encountering the first incorrect character, which allows remote malicious users to obtain passwords via a brute-force attack that relies on timing differences in responses to incorrect password guesses, aka a timing side-channel attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap router 721 |
||
sap router 720 |
||
sap router 710 |