SAP NetWeaver SAPHostControl Service Command Injection Vulnerability
Schweregrad: : Alto
Data do informe: 21 julho 2015
Descrição
A vulnerability has been reported in SAP NetWeaver, which can be exploited by malicious people to compromise a vulnerable system.The vulnerability is caused due to missing input validation in SAPHostControl Service and can be exploited to inject arbitrary commands via the SOAP management interface.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1005176
Trend Micro Deep Security DPI Rule Name: 1005176 - SAP NetWeaver SAPHostControl Service Command Injection Vulnerability
Software infectado e versão:
- SAP NetWeaver