CVE-2015-7730

Name of the Vulnerable Software and Affected Versions SAP BusinessObjects BI Platform version 4.1 BusinessObjects Edge version 4.0 BusinessObjects XI (BOXI) version 3.1 R3

Description The issue allows remote attackers to cause a denial of service via a crafted GIOP packet, resulting in an out-of-bounds read and listener crash. This is due to a buffer overflow vulnerability in the affected systems.

Recommendations For SAP BusinessObjects BI Platform version 4.1, update to a version that addresses the buffer overflow issue to prevent denial of service attacks. For BusinessObjects Edge version 4.0, apply the necessary patch or update to fix the buffer overflow vulnerability and prevent exploitation. For BusinessObjects XI (BOXI) version 3.1 R3, consider restricting access to the GIOP packet processing functionality until a patch is available to mitigate the risk of denial of service attacks.