Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1526853-5)
Описание
Upgrade tools are structured in such a way that they can be called by standalone C programs (SAPup, SAPehpi). Therefore, many programs and function modules have input parameters that control the behavior of the tools dynamically, in order to accommodate the numerous scenarios involved in an upgrade or an Enhancement Package installation.
Как исправить
Step 1: Set the table maintenance parameter for the table TICNV to 'Display/Maintenance Allowed with Restrictions'.
Step 2: Either safeguard the execution of programs and function modules appropriately or implement the attached corrections. After you implement the corrections, execution is permitted only for the system-wide user DDIC. Therefore, adequate access restrictions must exist for this user. Also refer to the comments about the automatic implementation.
Step 3: Always implement this note after you execute the "Extraction" step or the "Import" step of an upgrade or an EHPI application.
Step 2: Either safeguard the execution of programs and function modules appropriately or implement the attached corrections. After you implement the corrections, execution is permitted only for the system-wide user DDIC. Therefore, adequate access restrictions must exist for this user. Also refer to the comments about the automatic implementation.
Step 3: Always implement this note after you execute the "Extraction" step or the "Import" step of an upgrade or an EHPI application.
Ссылки