SAP : Security Vulnerabilities, CVEs, Published In 2004 (Code Execution)
Multiple buffer overflows in the mySAP.com architecture for SAP allow remote attackers to execute arbitrary code via a long HTTP Host header to (1) Message Server, (2) Web Dispatcher, or (3) Application Server.
Max CVSS
7.5
EPSS Score
2.40%
Published
2004-04-15
Updated
2017-07-11
Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary code via a high "trace level."
Max CVSS
7.5
EPSS Score
2.88%
Published
2004-04-15
Updated
2017-07-11
Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.
Max CVSS
7.5
EPSS Score
2.40%
Published
2004-04-15
Updated
2017-07-11
3 vulnerabilities found