Sign-up

ID

VAR-201107-0311


TITLE

SAP Netweaver Information Disclosure Vulnerability

Trust: 0.8

sources: IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2735

DESCRIPTION

A security vulnerability exists in SAP NetWeaver that is passed to the CIDXBTDDump.jsp in the Ispeak Details Monitoring application (com.sap.aii.af.ispeak.app). The input to the BTDDump.jsp and RNIF11BTDDump.jsp script \"txtBtdID\" parameters is missing before returning to the user. Filtering can lead to cross-site scripting attacks. SAP NetWeaver is the technical foundation for SAP Business Suite solutions, SAP xApps composite applications, partner solutions, and custom applications. SAP NetWeaver has security vulnerabilities. Business Communication Broker does not properly restrict the use of certain functions. Attackers can exploit vulnerabilities to obtain sensitive information such as J2EE patch levels and internal IP addresses. When processing the tag of a SOAP-RFC request, the XML parser has an integer overflow error. The attacker can exploit the vulnerability to terminate the disp+work.exe service, causing a denial of service attack. An attacker may leverage the issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, disclose sensitive information, or cause denial-of-service conditions

Trust: 2.43

sources: CNVD: CNVD-2011-2737 // CNVD: CNVD-2011-2735 // CNVD: CNVD-2011-2739 // BID: 48718 // IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d // IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d // IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 2.4

sources: IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d // IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d // IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2737 // CNVD: CNVD-2011-2735 // CNVD: CNVD-2011-2739

AFFECTED PRODUCTS

vendor:sapmodel:netweaverscope:eqversion:7.0

Trust: 2.7

vendor:sapmodel:netweaver sp15scope:eqversion:7.0

Trust: 2.1

vendor:sapmodel:netweaver sp8scope:eqversion:7.0

Trust: 2.1

vendor:sapmodel:netweaverscope:eqversion:7.10

Trust: 2.1

vendor:sapmodel:netweaverscope:eqversion:7.30

Trust: 2.1

vendor:sapmodel:netweaverscope:eqversion:7.02

Trust: 2.1

vendor:sapmodel:netweaverscope:eqversion:7.01

Trust: 2.1

vendor:sapmodel:netweaver sp15scope:eqversion:7.0*

Trust: 0.6

vendor:sapmodel:netweaver sp8scope:eqversion:7.0*

Trust: 0.6

vendor:sapmodel:netweaverscope:eqversion:7.10*

Trust: 0.6

vendor:sapmodel:netweaverscope:eqversion:7.30*

Trust: 0.6

vendor:sapmodel:netweaverscope:eqversion:7.02*

Trust: 0.6

vendor:sapmodel:netweaverscope:eqversion:7.01*

Trust: 0.6

sources: IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d // IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d // IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2737 // CNVD: CNVD-2011-2735 // CNVD: CNVD-2011-2739 // BID: 48718

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d
value: HIGH

Trust: 0.2

IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d
value: MEDIUM

Trust: 0.2

IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d
severity: NONE
baseScore: NONE
vectorString: NONE
accessVector: NONE
accessComplexity: NONE
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: UNKNOWN

Trust: 0.2

IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d
severity: NONE
baseScore: NONE
vectorString: NONE
accessVector: NONE
accessComplexity: NONE
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: UNKNOWN

Trust: 0.2

IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d
severity: NONE
baseScore: NONE
vectorString: NONE
accessVector: NONE
accessComplexity: NONE
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: UNKNOWN

Trust: 0.2

sources: IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d // IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d // IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d

THREAT TYPE

network

Trust: 0.3

sources: BID: 48718

TYPE

Unknown

Trust: 0.3

sources: BID: 48718

PATCH

title:Patch for SAP Netweaver Cross-Site Scripting Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/4438

Trust: 0.6

title:Patch for SAP Netweaver Information Disclosure Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/4437

Trust: 0.6

title:Patch for SAP Netweaver Denial of Service Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/4440

Trust: 0.6

sources: CNVD: CNVD-2011-2737 // CNVD: CNVD-2011-2735 // CNVD: CNVD-2011-2739

EXTERNAL IDS

db:BIDid:48718

Trust: 2.1

db:CNVDid:CNVD-2011-2735

Trust: 0.8

db:CNVDid:CNVD-2011-2737

Trust: 0.8

db:CNVDid:CNVD-2011-2739

Trust: 0.8

db:IVDid:2CA34F36-1F8F-11E6-ABEF-000C29C66E3D

Trust: 0.2

db:IVDid:56F6D208-1F8F-11E6-ABEF-000C29C66E3D

Trust: 0.2

db:IVDid:539F900E-1F8F-11E6-ABEF-000C29C66E3D

Trust: 0.2

sources: IVD: 2ca34f36-1f8f-11e6-abef-000c29c66e3d // IVD: 56f6d208-1f8f-11e6-abef-000c29c66e3d // IVD: 539f900e-1f8f-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2737 // CNVD: CNVD-2011-2735 // CNVD: CNVD-2011-2739 // BID: 48718

REFERENCES

url:http://dsecrg.com/pages/vul/show.php?id=328

Trust: 0.9

url:http://dsecrg.com/pages/vul/show.php?id=327

Trust: 0.9

url:http://dsecrg.com/pages/vul/show.php?id=329

Trust: 0.9

url:http://www.sap.com/platform/netweaver/index.epx

Trust: 0.3

sources: CNVD: CNVD-2011-2737 // CNVD: CNVD-2011-2735 // CNVD: CNVD-2011-2739 // BID: 48718

CREDITS

Alexander Polyakov, Dmitriy Evdokimov, and Alexey Sintsov from DSecRG

Trust: 0.3

sources: BID: 48718

SOURCES

db:IVDid:2ca34f36-1f8f-11e6-abef-000c29c66e3d
db:IVDid:56f6d208-1f8f-11e6-abef-000c29c66e3d
db:IVDid:539f900e-1f8f-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2011-2737
db:CNVDid:CNVD-2011-2735
db:CNVDid:CNVD-2011-2739
db:BIDid:48718

LAST UPDATE DATE

2022-05-17T02:06:03.945000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2011-2737date:2011-07-20T00:00:00
db:CNVDid:CNVD-2011-2735date:2011-07-20T00:00:00
db:CNVDid:CNVD-2011-2739date:2011-07-20T00:00:00
db:BIDid:48718date:2011-07-19T00:00:00

SOURCES RELEASE DATE

db:IVDid:2ca34f36-1f8f-11e6-abef-000c29c66e3ddate:2011-07-20T00:00:00
db:IVDid:56f6d208-1f8f-11e6-abef-000c29c66e3ddate:2011-07-20T00:00:00
db:IVDid:539f900e-1f8f-11e6-abef-000c29c66e3ddate:2011-07-20T00:00:00
db:CNVDid:CNVD-2011-2737date:2011-07-20T00:00:00
db:CNVDid:CNVD-2011-2735date:2011-07-20T00:00:00
db:CNVDid:CNVD-2011-2739date:2011-07-20T00:00:00
db:BIDid:48718date:2011-07-19T00:00:00