SAP CTC Service Verb Tampering User Management Vulnerability

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  Severity: MEDIUM

  Advisory Date: JUL 21, 2015

---

  DESCRIPTION

Authentication bypass vulnerability in SAP NetWeaver CTC service can be exploited for unauthorized user management and OS command execution.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1005574