• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Note 1661747 - Potential denial of service in LOD-ESO-AS

Главная Специалистам База уязвимостей Note 1661747 - Potential denial of service in LOD-ESO-AS

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
Производитель ПО
SAP
Наименование ПО
SAP Notes (1661747-3) SAP Support Packages (E_SOURCING_SRM_JAVA_SERVER_50_SP000_000010, E_SOURCING_SRM_JAVA_SERVER_50_SP999999_999999, SOURCING_SRM_JAVA_SERVER_51_SP010_000000, SOURCING_SRM_JAVA_SERVER_51_SP999999_999999)
Описание
The problem is caused by a resource exhaustion condition. An attacker  can launch a specifically crafted request that causes the process to  consume excessive resources. As a result, no other processes can  allocate new resources, rendering the system unavailable. This condition  can be intentionally provoked by an attacker to cause a denial of service.
Как исправить
Fixes have been developed and released in version 5.0 J, Version 5.1 Patch 10 and all Version 7.0 SP and patch releases. Update to the appropriate Release / Patch version to mitigate this risk.
Ссылки