SAP NetWeaver Dispatcher Bugs Let Remote Users Execute Arbitrary Code and Deny Service - SecurityTracker

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Category: Application (Generic) > SAP NetWeaver

SAP NetWeaver Dispatcher Bugs Let Remote Users Execute Arbitrary Code and Deny Service

SecurityTracker Alert ID: 1027052

SecurityTracker URL: http://securitytracker.com/id/1027052

CVE Reference: CVE-2012-2511, CVE-2012-2512, CVE-2012-2513, CVE-2012-2514, CVE-2012-2611, CVE-2012-2612 (Links to External Site)

Updated: May 22 2012

Original Entry Date: May 9 2012

Impact: Denial of service via network, Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 7.0 EHP1, 7.0 EHP2

Description: Several vulnerabilities were reported in SAP NetWeaver Dispatcher. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions.

A remote user can send specially crafted SAP Diag packets to trigger a buffer overflow in the Dispatcher service and execute arbitrary code on the target system. The code will run with the privileges of the target service.

The DiagTraceR3Info function is affected [CVE-2012-2611].

A remote user can also cause the target service to crash.

The DiagTraceHex function is affected [CVE-2012-2612].

The DiagTraceAtoms function is affected [CVE-2012-2511].

The DiagTraceStreamI function is affected [CVE-2012-2512].

The Diaginput function is affected [CVE-2012-2513].

The DiagiEventSource function is affected [CVE-2012-2514].

The vendor was notified on January 24, 2012.

The original advisory is available at:

http://www.coresecurity.com/content/sap-netweaver-dispatcher-multiple-vulnerabilities

Martin Gallo from Core Security reported these vulnerabilities.

Impact: A remote user can execute arbitrary code on the target system.

A remote user can cause the target service to crash.

Solution: The vendor has issued a fix, available at:

https://service.sap.com/sap/support/notes/1687910

Vendor URL: www.sap.com/ (Links to External Site)

Cause: Boundary error

Underlying OS: Windows (Any)

Message History: None.

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
This web site uses cookies for web analytics. Learn More
Copyright 2019, SecurityGlobal.net LLC