Unspecified vulnerability in sapstartsrv.exe in the SAP Kernel 6.40, 7.00, 7.01, 7.10, 7.11, and 7.20, as used in SAP NetWeaver 7.x and SAP Web Application Server 6.x and 7.x, allows remote attackers to cause a denial of service (Management Console shutdown) via a crafted request. NOTE: some of these details are obtained from third party information.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sap_kernel | Sap | 6.40 (including) | 6.40 (including) |
| Sap_kernel | Sap | 7.00 (including) | 7.00 (including) |
| Sap_kernel | Sap | 7.01 (including) | 7.01 (including) |
| Sap_kernel | Sap | 7.10 (including) | 7.10 (including) |
| Sap_kernel | Sap | 7.11 (including) | 7.11 (including) |
| Sap_kernel | Sap | 7.20 (including) | 7.20 (including) |
References
- http://secunia.com/advisories/37684
- http://www.cybsec.com/vuln/CYBSEC_SAP_sapstartsrv_DoS.pdf
- http://www.securityfocus.com/bid/37286
- http://www.securitytracker.com/id?1023319
- https://service.sap.com/sap/support/notes/1302231
- http://secunia.com/advisories/37684
- http://www.cybsec.com/vuln/CYBSEC_SAP_sapstartsrv_DoS.pdf
- http://www.securityfocus.com/bid/37286
- http://www.securitytracker.com/id?1023319
- https://service.sap.com/sap/support/notes/1302231