Executive Summary

Informations
Name CVE-2014-9595 First vendor Publication 2015-01-15
Vendor Cve Last vendor Modification 2018-12-10

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:P/I:P/A:P)
Cvss Base Score 6.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 8 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Buffer overflow in the SAP NetWeaver Dispatcher in SAP Kernel 7.00 32-bit and 7.40 64-bit allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via unspecified vectors, related to the Spool System, aka SAP Note 2061271.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9595

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 2

Sources (Detail)

Source Url
MISC https://erpscan.io/advisories/erpscan-14-024-sap-kernel-rce-dos/
https://erpscan.io/press-center/blog/sap-critical-patch-update-december-2014/
SECUNIA http://secunia.com/advisories/62150

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
Date Informations
2021-05-04 12:35:09
  • Multiple Updates
2021-04-22 01:42:53
  • Multiple Updates
2020-05-23 00:43:03
  • Multiple Updates
2018-12-11 00:19:06
  • Multiple Updates
2016-04-27 01:34:55
  • Multiple Updates
2015-01-16 21:25:32
  • Multiple Updates
2015-01-15 21:24:51
  • First insertion