SAP NetWeaver Java AS CrashFileDownloadServlet Directory Traversal Vulnerability

2016年7月27日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 緊急

概要

An attacker can use a Directory traversal to access arbitrary files and directories located in an SAP server file system including application source code, configuration and system files. It allows obtaining critical technical and business-related information stored in the vulnerable SAP system.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1005933