Описание
An unspecified interface in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands with SIDadm privileges via unspecified vectors, aka SAP Security Note 2234226.
An unspecified interface in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands with SIDadm privileges via unspecified vectors, aka SAP Security Note 2234226.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2016-6147
- https://www.onapsis.com/blog/analyzing-sap-security-notes-february-2016
- https://www.onapsis.com/research/security-advisories/sap-trex-remote-command-execution-0
- http://packetstormsecurity.com/files/138446/SAP-TREX-7.10-Revision-63-Remote-Command-Execution.html
- http://seclists.org/fulldisclosure/2016/Aug/94
- http://www.securityfocus.com/bid/92066
Связанные уязвимости
CVSS3: 9.8
nvd
больше 9 лет назад
An unspecified interface in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands with SIDadm privileges via unspecified vectors, aka SAP Security Note 2234226.