CVE-2006-0732

Name of the Vulnerable Software and Affected Versions SAP Business Connector versions 4.6 and 4.7

Description The issue allows remote attackers to read or delete arbitrary files. This can be achieved via the fullName parameter to specific API endpoints, such as "/sapbc/SAP/chopSAPLog.dsp" or "/invoke/sap.monitor.rfcTrace/deleteSingle". The attack requires the product to be installed as root/admin and the attacker to have access to a general purpose port, both of which are discouraged in the documentation. Additionally, the attacker must already possess administrative privileges acquired through other means.

Recommendations For SAP Business Connector versions 4.6 and 4.7, consider restricting access to the vulnerable API endpoints "/sapbc/SAP/chopSAPLog.dsp" and "/invoke/sap.monitor.rfcTrace/deleteSingle" until a fix is available. Avoid using the fullName parameter in these endpoints to minimize the risk of exploitation. Ensure the product is not installed as root/admin and limit access to general purpose ports as per the documentation guidelines. At the moment, there is no information about a newer version that contains a fix for this vulnerability.