• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Note 1720999 - Update 1 to Security Note 1531958

Главная Специалистам База уязвимостей Note 1720999 - Update 1 to Security Note 1531958

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
Производитель ПО
SAP
Наименование ПО
SAP Notes (1720999-3) SAP Support Packages (SAPKNA7028)
Описание
The correction instructions in security note 1531958 must be supplemented.
Как исправить
For the Swing UI PME the access to function module needs to be enabled again. If want to you use the Swing UI PME within CRM 5.0 and need access to function module EXTRACT_DATA form the Swing UI PME, you need to provide your own authorization check for function module EXTRACT_DATA as follows:

Create a customer specific implementation of interface IF_EX_EXTRACT_DATA

Implement the method CHECK_TABLE_ACCESS of interface IF_EX_EXTRACT_DATA to your own needs

Provide an implementation to Enhancement spot EXTRACT_DATA and the BAdI Definition EXTRACT_DATA and use your class from above as implementation for the BAdI.

You need to enable the access to tables starting with 'COMM_CFG', '/1SAP1/SE' and 'T00' .
If you need to include other tables, you may implement this as well in your BAdI implementation.
Ссылки