• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Не установлено обновление Note 1558010

Главная Специалистам База уязвимостей Не установлено обновление Note 1558010

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:P/I:P/A:P)
Производитель ПО
SAP
Наименование ПО
SAP Notes (1558010-3) SAP Support Packages (SAPK-60020INISOIL, SAPK-60210INISOIL, SAPK-60309INISOIL, SAPK-60410INISPRA, SAPK-60504INISPRA, SAPKI47060, SAPKI4C140)
Описание
Due to the function being a remote enabled function, there was a  possibility of a user being able to remotely execute some commands via this function.
Как исправить
Since this function is no more used in the PRA revenue area, the function module in question has been deleted. The deletion would be available in our next support pack and would eliminate the security risk arising due to this function.
This note cannot be applied via SNOTE (Note assistant), for applying this note manually, kindly see step by step manual procedure in the attached document 'Manual_Steps.zip'.
Ссылки