Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1500726-2)
SAP Support Packages
(SAPK-70010INSRMEXT, SAPK-70103INSRMEXT, SAPKIBKT18, SAPKIBKU06)
Описание
The code can cause Infinite loop. A malicious user can trigger a condition in which the process enters an infinite loop, which causes it to consume all available processing time. This results in the entire machine being unresponsive until the process is manually killed. An adversary can use this flaw to launch a Denial of Service (DoS) attack. The code can cause Resource exhaustion. The problem is caused by a resource exhaustion condition. An attacker can launch a specifically crafted request that results in the process consuming excessive resources. Thus, no other processes can allocate new resources and the system is rendered unavailable. This condition can be intentionally provoked by an adversary in order to cause a Denial of Service.
Как исправить
Implement this note or the related support package.
Ссылки