SAP^® and Oracle^® Security Advisories

SAP Host Agent – sapstartsrv – OOB memory access in MsIGetProfileValue Impact On Business Remotely exploitable, without authentication, attacker could perform DOS against all sapstartsrv service. Lead to direct impact on availability for this service and signifiant availability issues for the SAP system. Affected Components Description The SAP Host Agent can accomplish several life-cycle tasks…

Server-Side Request Forgery in SAP NetWeaver, ABAP Platform and SAP Host Agent Impact On Business A successful attack can lead to discovering internal SAP open port information that normally is not reachable. Affected Components Description SAP NetWeaver Application Server for ABAP provides both the runtime environment and the development environment for all ABAP programs. The…

SAP Host Agent – Credential Exposure Through Log Files Impact On Business By exploiting this vulnerability a malicious low-privileged user can retrieve SDA credential (sapadm) as well as few technical SAP Netweaver credentials (like FRN_DPC_SID or FRN_CSA_SID), then used them to login into the SAP Netweaver or into the SDA and perform malicious or sensitive…

Stored XSS in administration UI of SAP Impact On Business Impact depends on the victim privileges, but SAP Webdispatcher access is generally granted to administrator users. In the worst case, a successful attack allows an attacker to force an administrator to perform actions on SAP Webdispatcher, like exfiltrate data, change data or shutdown the Webdispatcher….

Arbitrary execution of RFC functions through CCM_AGS_CC_SIM_API_START Impact On Business This vulnerability allows an attacker to execute any function that exists in the system, therefore if there is, for example, a function that can delete/overwrite files or execute operating system commands, this could be affected from the business to a denial of service. Affected Components…

Reflected Cross Site Scripting in CRM_BSP_FRAME class Impact On Business By exploiting this vulnerability a remote attacker could trick users into clicking malicious links and depending on the level of protection that the browser provides, the attacker could potentially steal their user sessions or other information. Affected Components Description SAP_ABA 700 SP 07-40 SAP_ABA 701…

Reflected Cross Site Scripting in CL_HTTP_EXT_SERVICE_POST_DEMO class Impact On Business By exploiting this vulnerability a remote attacker could trick users into clicking malicious links and depending on the level of protection that the browser provides, the attacker could potentially steal their user sessions or other information. Affected Components Description SAP_ABA 700 SP 07-40 SAP_ABA 701…

Reflected Cross Site Scripting in PING_PONG demo app Impact On Business By exploiting this vulnerability a remote attacker could trick users into clicking malicious links and depending on the level of protection that the browser provides, the attacker could potentially steal their user sessions or other information. Affected Components Description SAP_BASIS 740 SP 09-28 SAP_BASIS…

Reflected Cross Site Scripting in COVER_BY_BSP app Impact On Business By exploiting this vulnerability a remote attacker could trick users into clicking malicious links and depending on the level of protection that the browser provides, the attacker could potentially steal their user sessions or other information. Affected Components Description This vulnerability affects ST 720 SP…