Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:N/I:P/A:NSAP)
Производитель ПО
Наименование ПО
SAP Notes
(1768068-2)
SAP Support Packages
(SAPKB70213, SAPKB71016, SAPKB71111, SAPKB72008, SAPKB73009)
Описание
The program code contains a hard-coded user name that changes the system's behavior if a user is successfully authenticated. The user may obtain additional information that should not be displayed.
Как исправить
The backdoor is removed starting with the support package mentioned in this note. Please apply the support package or later one.As an alternative you may apply the respective correction instruction.
Ссылки