Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1511280-5)
SAP Support Packages
(SAPK-60019INISUT, SAPK-60209INISUT, SAPK-60308INISUT, SAPK-60409INISUT, SAPK-60503INISUT, SAPK-60504INISUT)
Описание
IS-U-WA executes certain functions through referencing specific URLs. When an attacker tricks an authenticated user#s browser into making a request containing a certain URL and specific parameters, the function is executed with the rights of the user.
If present, the attacker may use a Cross Site Scripting attack to trigger the exploit, or use an approach in which a link to click is presented to the victim.
The ITS-Service EWHV_WASTE inside the package EEWA was designed to display detailed information for a chosen waste object (cleaning object, property, container, container location, service and contracts). It can be displayed inside an HTML control e.g. inside a tab-strip of a CIC solution.
In some cases it could be possible to replace this generated HTML content or inject scripting to submit an unauthorized OK_CODE to the application handler or insert scripting to steel the current session.
To avoid this possibility the connected SICF-Node EWHV_WASTE has been modified to prohibit any OK_CODE handling and steeling current session inside this ITS-Service.
If present, the attacker may use a Cross Site Scripting attack to trigger the exploit, or use an approach in which a link to click is presented to the victim.
The ITS-Service EWHV_WASTE inside the package EEWA was designed to display detailed information for a chosen waste object (cleaning object, property, container, container location, service and contracts). It can be displayed inside an HTML control e.g. inside a tab-strip of a CIC solution.
In some cases it could be possible to replace this generated HTML content or inject scripting to submit an unauthorized OK_CODE to the application handler or insert scripting to steel the current session.
To avoid this possibility the connected SICF-Node EWHV_WASTE has been modified to prohibit any OK_CODE handling and steeling current session inside this ITS-Service.
Как исправить
1. Refer to note 1481392 for additional information and instructions. The corrections from note 1481392 are a prerequisite for implementation of this note.
2. Implement the correction instructions of this note. This will also create the report ITS_XSRF_PARAM_ISUWA in your system.
3. Execute the report ITS_XSRF_PARAM_ISUWA and specify when requested a corresponding transport request number. The report will add service parameters for the adapted ITS services (maintained via the GUI configuration pushbutton for a service within transaction SICF)
2. Implement the correction instructions of this note. This will also create the report ITS_XSRF_PARAM_ISUWA in your system.
3. Execute the report ITS_XSRF_PARAM_ISUWA and specify when requested a corresponding transport request number. The report will add service parameters for the adapted ITS services (maintained via the GUI configuration pushbutton for a service within transaction SICF)
Ссылки
