SAP® and Oracle® Security Advisories

Onapsis Research Labs is the world’s leading team of security experts who combine their deep knowledge of critical ERP applications and decades of threat research experience to deliver impactful security insights and threat intelligence focused on the business-critical applications from SAP, Oracle, and SaaS providers. Onapsis Research Labs is, far and away, the most prolific and most celebrated contributor of vulnerability research by the SAP Product Security Response Team. No other research team comes close.

04/14/2011

SAP WebAS ITS Mobile Test Multiple Vulnerabilities

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More
SAP KERNEL
Medium

01/04/2011

SAP Management Console Information Disclosure

By Abusing this SAP KERNEL functionality, a remote and unauthenticated attacker would be able to gain sensitive information from an SAP System. This information would help him in the process of compromising the security of the SAP server through more advanced attacks. Please fill in the following form in order to download the selected Onapsis’…

Read More

01/04/2011

SAP Management Console Unauthenticated Service Restart

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More

11/02/2010

Oracle Virtual Server Agent Arbitrary File Access

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More

11/02/2010

Oracle Virtual Server Agent Local Privilege Escalation

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More

09/22/2010

SAP Management Console Multiple Denial of Service

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More

07/13/2010

SAP J2EE Web Services Navigator Cross-Site Scripting

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More

02/20/2010

Oracle Virtual Server Agent Remote Command Execution

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More

02/10/2010

SAP J2EE Authentication Phishing Vector

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email. By registering, you will obtain the following benefits:

Read More
27282930

Page 29 of 30