A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an attacker can exploit these products via Code Injection, and potentially enabling to take complete control of the products, including viewing, changing, or deleting data by injecting code into the working memory which is subsequently executed by the application. It can also be used to cause a general fault in the product, causing the products to terminate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap abap platform 700 |
||
sap abap platform 701 |
||
sap abap platform 702 |
||
sap abap platform 710 |
||
sap abap platform 711 |
||
sap abap platform 751 |
||
sap abap platform 753 |
||
sap abap platform 755 |
||
sap abap platform 740 |
||
sap abap platform 750 |
||
sap abap platform 754 |
||
sap abap platform 730 |
||
sap abap platform 731 |
Don't be so smug, Mac users, you're open to an InDesign project file
A nightmare flaw for Exchange Server headlines this month's Patch Tuesday lineup from Microsoft and others. September sees a bundle of 129 CVE-listed flaws patched by Microsoft. The vast majority of those, 105 in total, are classified as 'important' risks. Another 23 are considered critical bugs, and one is listed as moderate. None of the bugs have public exploit code or in-the-wild attacks yet. Of the nearly two-dozen critical patches, Zero Day Initiative's Dustin Childs says that far and away ...