ID
VAR-201508-0681
TITLE
SAP NetWeaver 'AFPServlet' Arbitrary File Download Vulnerability
Trust: 0.3
sources:
BID: 76418
DESCRIPTION
SAP NetWeaver is prone to an arbitrary file-download vulnerability. An attacker can exploit this issue to download arbitrary files. Information obtained may aid in further attacks.
Trust: 0.3
sources:
BID: 76418
AFFECTED PRODUCTS
| vendor: | sap | model: | netweaver | scope: | eq | version: | 0 | Trust: 0.3 |
sources:
BID: 76418
THREAT TYPE
network
Trust: 0.3
sources:
BID: 76418
TYPE
Design Error
Trust: 0.3
sources:
BID: 76418
EXTERNAL IDS
| db: | BID | id: | 76418 | Trust: 0.3 |
sources:
BID: 76418
REFERENCES
| url: | http://scn.sap.com/docs/doc-8218 | Trust: 0.3 |
| url: | http://scn.sap.com/community/security/blog/2015/08/11/sap-security-patch-day-summary--august-2015 | Trust: 0.3 |
| url: | https://service.sap.com/sap/support/notes/2169391 | Trust: 0.3 |
| url: | https://www.onapsis.com/blog/analyzing-sap-security-notes-august-2015-edition | Trust: 0.3 |
sources:
BID: 76418
CREDITS
Onapsis
Trust: 0.3
sources:
BID: 76418
SOURCES
| db: | BID | id: | 76418 |
LAST UPDATE DATE
2022-05-17T02:00:00.268000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 76418 | date: | 2015-08-13T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 76418 | date: | 2015-08-13T00:00:00 |