PT-2017-2097 · Sap · Sap Netweaver

Publicado

2017-04-10

Atualizado

2018-12-10

CVE-2016-10311

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SAP NetWeaver versions 7.0 through 7.5

Description The issue is caused by a stack-based buffer overflow in the SAPSTARTSRV service of the SAP NetWeaver platform. This allows remote attackers to cause a denial of service by sending a crafted packet to the SAPSTARTSRV port.

Recommendations For SAP NetWeaver versions 7.0 through 7.5, consider restricting access to the SAPSTARTSRV port as a temporary workaround until a patch is available.

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

BDU:2017-01265

CVE-2016-10311

Produtos afetados

Sap Netweaver

PT-2017-2097 · Sap · Sap Netweaver

CVE-2016-10311

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5