PT-2003-1959 · Microsoft+1 · Netapi32.Dll+1
Published
2003-11-21
·
Updated
2017-07-11
·
CVE-2003-0938
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
SAP DB versions 7.4.03.27 and earlier
Description
The issue allows local users to gain SYSTEM privileges by exploiting a malicious "NETAPI32.DLL" in the current working directory. This DLL is loaded by SAP DB before the real DLL, as demonstrated using the
SQLAT stored procedure.Recommendations
For SAP DB versions 7.4.03.27 and earlier, consider restricting access to the
SQLAT stored procedure until a fix is available. As a temporary workaround, ensure that no malicious "NETAPI32.DLL" is present in the current working directory to prevent unauthorized privilege escalation.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Netapi32.Dll
Sap Db