Executive Summary
Summary | |
---|---|
Title | SAP DB Web Server buffer overflow vulnerability |
Informations | |||
---|---|---|---|
Name | VU#679041 | First vendor Publication | 2007-07-10 |
Vendor | VU-CERT | Last vendor Modification | 2007-07-16 |
Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Vulnerability Note VU#679041SAP DB Web Server buffer overflow vulnerabilityOverviewThe SAP Web Server contains a vulnerability that may allow an attacker to execute arbitrary code or cause a denial-of-service condition.I. DescriptionSAP DB is a database server that includes a series of web-based configuration tools.A stack based buffer overlfow exists in the SAP DB web server (WAHTTP.exe). Note that this vulnerability only affects the web server that is included with the SAP DB server. Systems hosting the SAP web tools on a different web server are not affected by this vulnerability.
References
Thanks to Mark Litchfield of NGS software for information that was used in this report. This document was written by Ryan Giobbi.
|
Original Source
Url : http://www.kb.cert.org/vuls/id/679041 |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
37838 | SAP DB Web Server (waHTTP.exe) sapdbwa_GetQueryString Overflow A buffer overflow exists in SAP DB. The web server fails to validate GET requests resulting in a stack overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity. |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | SAP DB web server stack buffer overflow attempt RuleID : 14230 - Revision : 11 - Type : SERVER-WEBAPP |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2007-07-10 | Name : The remote web server is susceptible to a buffer overflow attack. File : webdbm_dbm_intern_test_overflow.nasl - Type : ACT_GATHER_INFO |