Internet Communication Manager (aka ICMAN or ICM) in SAP JAVA AS 7.2 up to and including 7.4 allows remote malicious users to cause a denial of service (heap memory corruption and process crash) via a crafted HTTP request, related to the IctParseCookies function, aka SAP Security Note 2256185.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap java as 7.4 |