Описание
A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packet to TCP ports 36NN and/or 39NN.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sap:netweaver:7.01:sr1:*:*:*:*:*:*
cpe:2.3:a:sap:netweaver:7.02:sp06:*:*:*:*:*:*
cpe:2.3:a:sap:netweaver:7.30:sp04:*:*:*:*:*:*
cpe:2.3:a:sap:netweaver:2004s:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02657
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-129
Связанные уязвимости
github
почти 4 года назад
A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packet to TCP ports 36NN and/or 39NN.
EPSS
Процентиль: 85%
0.02657
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-129