Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1796761-2)
SAP Support Packages
(SAPKU50022, SAPKU50023, SAPKU60013, SAPKU60014, SAPKU70013, SAPKU70014, SAPKU70110, SAPKU70111, SAPKU70206, SAPKU70209, SAPKU71201, SAPKU71204, SAPKU71302)
Описание
Read-write or write directory traversal:CRM Handheld Service fails to correctly validate the path to which a user-submitted file is written. As a result, an attacker can potentially overwrite data in the remote system.
Как исправить
1. Follow the manual instructions.
2. Implement the attached correction instructions.
2. Implement the attached correction instructions.
Ссылки