SAP TREX 7.10 Revision 63 allows remote malicious users to write to arbitrary files via vectors related to RFC-Gateway, aka SAP Security Note 2203591.
sap trex 7.10