Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-9595

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2014-9595
Last Modified 16 Jan 2015 01:32:48
Published 15 Jan 2015 10:59:25
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-9595

Summary

Buffer overflow in the SAP NetWeaver Dispatcher in SAP Kernel 7.00 32-bit and 7.40 64-bit allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via unspecified vectors, related to the Spool System, aka SAP Note 2061271.

Vulnerable Systems

Application

  • Sap Kernel 7.00

  • Sap Kernel 7.40


References

SECUNIA - 62150

MISC - http://erpscan.com/press-center/blog/sap-critical-patch-update-december-2014/

MISC - http://erpscan.com/advisories/erpscan-14-024-sap-kernel-rce-dos/


Last Updated: 27 May 2016 11:07:34