An unauthorized attacker may be able to entice an administrator to invoke telnet commands of an SAP NetWeaver Application Server for Java that allow the attacker to gain NTLM hashes of a privileged user.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Netweaver_application_server_java | Sap | 7.10 (including) | 7.10 (including) |
Netweaver_application_server_java | Sap | 7.20 (including) | 7.20 (including) |
Netweaver_application_server_java | Sap | 7.30 (including) | 7.30 (including) |
Netweaver_application_server_java | Sap | 7.31 (including) | 7.31 (including) |
Netweaver_application_server_java | Sap | 7.40 (including) | 7.40 (including) |
Netweaver_application_server_java | Sap | 7.50 (including) | 7.50 (including) |