SAP NetWeaver SAPHostControl Service Command Injection Vulnerability
Gravedad: High
Fecha recomendada: 21 de julio de 2015
Descripción
A vulnerability has been reported in SAP NetWeaver, which can be exploited by malicious people to compromise a vulnerable system.The vulnerability is caused due to missing input validation in SAPHostControl Service and can be exploited to inject arbitrary commands via the SOAP management interface.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1005176
Trend Micro Deep Security DPI Rule Name: 1005176 - SAP NetWeaver SAPHostControl Service Command Injection Vulnerability
Software y versión afectados
- SAP NetWeaver