CVE-2012-1291

Name of the Vulnerable Software and Affected Versions SAP NetWeaver version 7.0

Description The issue allows remote attackers to obtain sensitive information about the Adapter Monitor via unspecified vectors, possibly related to the EnableInvokerServletGlobally property in the servlet jsp service.

Recommendations For SAP NetWeaver version 7.0, consider restricting access to the com.sap.aii.mdt.amt.web.AMTPageProcessor servlet until a fix is available. Additionally, review the configuration of the EnableInvokerServletGlobally property in the servlet jsp service to minimize potential exposure.