• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

Note 1827217 - Code injection vulnerability in ABAP Verification

Главная Специалистам База уязвимостей Note 1827217 - Code injection vulnerability in ABAP Verification

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:C/I:C/A:CSAP)
Производитель ПО
SAP
Наименование ПО
SAP Notes (1827217-2) SAP Support Packages (SAPKB73108, SAPKB74003)
Описание
The program code contains a possibility to define and execute  user-defined commands on the operating system level that changes the  behavior of the system. A valid and authenticated user is required.
Как исправить
With the support packages mentioned in this note the program RSXBNFCH will be deleted.With the attached correction instructions the program RSXBNFCH will be made unusable and as such the command execution will be disabled.
Ссылки