Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1521857-4)
SAP Support Packages
(SAPK-60025INISH, SAPK-60214INISH, SAPK-60314INISH, SAPK-60415INISH, SAPK-60504INISH, SAPK-60505INISH, SAPKIPHD56, SAPKIPHF41)
Описание
The report contains a vulnerability through which a malicious user can potentially write arbitrary files on the remote server, possibly corrupting data or altering system behavior.
Как исправить
Please refer to note 1497003 for additional information and instructions. The corrections from note 1497003 are a prerequisite for implementation of this note.
Logical File Name Used in this Solution:
The following logical file name has been created in order to enable the validation of physical file names: ISHMED_RAD_MSI_FILE
Logical File Name Used in this Solution:
The following logical file name has been created in order to enable the validation of physical file names: ISHMED_RAD_MSI_FILE
Ссылки