Search
SAP KERNELMedium

SAP Management Console Information Disclosure

January 4, 2011

By Abusing this SAP KERNEL functionality, a remote and unauthenticated attacker would be able to gain sensitive information from an SAP System. This information would help him in the process of compromising the security of the SAP server through more advanced attacks.

Please fill in the following form in order to download the selected Onapsis’ resource. The system will send you a download link to your email.

By registering, you will obtain the following benefits:

  • Receive information regarding new/upcoming Onapsis Security Advisories before public release.
  • Receive new issue of Onapsis’ SAP Security In-Depth publication before everyone else.
  • Free subscription to the Onapsis Security Newsletter.
Back to Advisories
Further Reading
SAP Solution ManagerHigh
Arbitrary execution of RFC functions through CCM_AGS_CC_SIM_API_START
Read More
SAP Solution ManagerMedium
Reflected Cross Site Scripting in CRM_BSP_FRAME class
Read More
SAP Solution ManagerMedium
Reflected Cross Site Scripting in CL_HTTP_EXT_SERVICE_POST_DEMO class
Read More

©2024 Onapsis | All rights reserved