Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1442700-2)
SAP Support Packages
(SAP_J2EE_ENGINE_CORE_640_SP025_000002, SAP_J2EE_ENGINE_CORE_640_SP026_000000, SAP_J2EE_ENGINE_CORE_640_SP999999_999999, SAP_J2EE_ENGINE_CORE_700_SP021_000003, SAP_J2EE_ENGINE_CORE_700_SP022_000000, SAP_J2EE_ENGINE_CORE_700_SP999999_999999, SAP_J2EE_ENGINE_CORE_701_SP006_000001, SAP_J2EE_ENGINE_CORE_701_SP007_000000, SAP_J2EE_ENGINE_CORE_701_SP999999_999999, SAP_J2EE_ENGINE_CORE_702_SP004_000000, SAP_J2EE_ENGINE_CORE_702_SP999999_999999)
Описание
All configuration tools are available only for administrators so it is not a big issue indeed, but nevertheless in the new releases the rdbms.password property is secured behind asterisks.
Как исправить
The problem is fixed in :
6.40 SP026
7.00 SP022
7.01 SP007
7.02 SP004
Upgrade to a fixed version or apply the patches described in the 'SP Patch Level' tab of the note.
6.40 SP026
7.00 SP022
7.01 SP007
7.02 SP004
Upgrade to a fixed version or apply the patches described in the 'SP Patch Level' tab of the note.
Ссылки