• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Не установлено обновление Note 1500726

Главная Специалистам База уязвимостей Не установлено обновление Note 1500726

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
Производитель ПО
SAP
Наименование ПО
SAP Notes (1500726-2) SAP Support Packages (SAPK-70010INSRMEXT, SAPK-70103INSRMEXT, SAPKIBKT18, SAPKIBKU06)
Описание
The code can cause Infinite loop. A malicious user can trigger a  condition in which the process enters an infinite loop, which causes it  to consume all available processing time. This results in the entire  machine being unresponsive until the process is manually killed. An  adversary can use this flaw to launch a Denial of Service (DoS) attack.                                                          The code can cause Resource exhaustion. The problem is caused by a resource  exhaustion condition. An attacker can launch a specifically crafted  request that results in the process consuming excessive resources. Thus,  no other processes can allocate new resources and the system is rendered  unavailable. This condition can be intentionally provoked by an adversary in order to cause a Denial of Service.
Как исправить
Implement this note or the related support package.
Ссылки