|
Apr 26 2013
|
SAP NetWeaver SMB Relay Lets Remote Users Access SMB Shares
|
|
Feb 18 2013
|
SAP NetWeaver Message Server Service Lets Remote Users Execute Arbitrary Code
|
|
Jan 24 2013
|
SAP NetWeaver SPML Service XML External Entity Flaw Lets Remote Users Obtain Files
|
|
Oct 26 2012
|
SAP NetWeaver XML External Entity Flaw Lets Remote Users Obtain Files
|
|
Aug 17 2012
|
SAP NetWeaver SOAP Interface Lets Remote Users Execute Arbitrary Commands
|
|
Jun 27 2012
|
SAP NetWeaver ABAP Flaw in 'msg_server.exe' Lets Remote Users Execute Arbitrary Code
|
|
May 9 2012
|
SAP NetWeaver Dispatcher Bugs Let Remote Users Execute Arbitrary Code and Deny Service
|
|
Feb 20 2012
|
SAP NetWeaver Stack Overflow in SAPHostControl Service Lets Remote Users Execute Arbitrary Code
|
|
Sep 16 2011
|
SAP NetWeaver 'com.sap.ipc.webapp.ipcpricing' Application May Disclose Potentially Sensitive Information
|
|
Sep 16 2011
|
Crystal Reports Input Validation Flaw in 'pubDBLogon.jsp' Permits Cross-Site Scripting Attacks
|
|
Sep 15 2011
|
SAP Web Application Server Flaws Permits Denial of Service, Cross-Site Scripting, and Shortcut Creation Attacks
|
|
Aug 22 2011
|
SAP NetWeaver EPS_DELETE_FILE RFC Function Lets Remote Users Delete Files and Obtain Potentially Sensitive Information
|
|
Aug 22 2011
|
SAP NetWeaver Input Validation Flaw in JavaMailExamples Permits Cross-Site Scripting Attacks
|
|
Jul 20 2011
|
SAP NetWeaver Lets Remote Users Deny Service, Obtain Information, and Conduct Cross-Site Scripting Attacks
|
|
Apr 15 2011
|
SAP NetWeaver Enterprise Portal Discloses Installation Path to Remote Users
|
|
Apr 15 2011
|
SAP Web Application Server ITSmobile Input Validation Flaws Permit Cross-Site Scripting Attacks
|
|
Mar 16 2011
|
SAP Crystal Reports Server Input Validation Flaw in PerformanceManagement Module Permits Cross-Site Scripting Attacks
|
|
Mar 14 2011
|
SAP NetWeaver Input Validation Hole in SOAP Adapter Permits Cross-Site Scripting Attacks
|
|
Jan 25 2011
|
SAP Crystal Reports Flaws Permit Directory Traversal and Cross-Site Scripting Attacks and Let Remote Users Overwrite Files
|
|
Jan 6 2011
|
SAP Management Console Unspecified Flaws Let Remote Users Obtain Information and Deny Service
|
|
Dec 20 2010
|
SAP Crystal Reports Buffer Overflow in ActiveX Control Lets Remote Users Execute Arbitrary Code
|
|
Dec 14 2010
|
SAP NetWeaver Business Client Buffer Overflow in 'sapwdpcd.dll' ActiveX Control Lets Remote Users Execute Arbitrary Code
|
|
Nov 9 2010
|
SAP NetWeaver 'sapstartsrv.exe' Processing Error Lets Remote Users Execute Arbitrary Code
|
|
Oct 12 2010
|
SAP BusinessObjects Crystal Reports Buffer Overflow in Processing GIOP Requests Lets Remote Users Execute Arbitrary Code
|
|
Sep 27 2010
|
SAP Management Console Null Pointer Dereference Lets Remote Users Deny Service
|
|
Aug 12 2010
|
Crystal Reports GIOP Message Size Integer Overflow Lets Remote Users Execute Arbitrary Code
|
|
Jul 15 2010
|
SAP J2EE Engine Input Validation Flaw in Web Services Navigator Permits Cross-Site Scripting Attacks
|
|
Jul 15 2010
|
SAP GUI Heap Overflow in 'wadmxhtml.dll' Tags Property Lets Remote Users Execute Arbitrary Code
|
|
Jun 17 2010
|
SAP J2EE Engine Telnet Interface Lets Remote Authenticated Users Bypass Some Administrative Access Controls
|
|
Mar 29 2010
|
SAP GUI Insecure Method in SAPBExCommonResources Lets Remote Users Execute Arbitrary Code
|
|
Mar 17 2010
|
SAP MaxDB Stack Overflow in 'serv.exe' Lets Remote Users Execute Arbitrary Code
|
|
Jan 20 2010
|
SAP Web Application Server Buffer Overflow Lets Remote Authenticated Users Execute Arbitrary Code
|
|
Dec 10 2009
|
SAP sapstartsrv Bug Lets Remote Users Deny Service
|
|
Sep 28 2009
|
SAP GUI ActiveX Control Insecure Methods Let Remote Users Overwrite Files on the Target User's System
|
|
Aug 13 2009
|
SAP NetWeaver Input Validation Flaw in UDDI Client Permits Cross-Site Scripting Attacks
|
|
Aug 4 2009
|
SAP Business One Stack Overflow in 'NT_Naming_Service.exe' Lets Remote Users Execute Arbitrary Code
|
|
Jun 8 2009
|
SAP GUI Buffer Overflow in 'SAPIrRfc' Lets Remote Users Execute Arbitrary Code
|
|
Apr 15 2009
|
SAP GUI KWEdit ActiveX Control Lets Remote Users Modify Files
|
|
Jan 27 2009
|
SAP NetWeaver Unspecified Input Validation Flaw Permits Cross-Site Scripting Attacks
|
|
Jan 7 2009
|
SAP GUI Heap Overflow in 'sizerone.ocx' Lets Remote Users Execute Arbitrary Code
|
|
Nov 11 2008
|
SAP GUI Unspecified Bug in 'mdrmsap.dll' Lets Remote Users Execute Arbitrary Code
|
|
Jul 31 2008
|
SAP MaxDB Untrusted Path in 'dbmsrv' Lets Local Users Gain Elevated Privileges
|
|
May 22 2008
|
SAP Web Application Server Input Validation Hole in webgui Permits Cross-Site Scripting Attacks
|
|
May 9 2008
|
SAP Internet Transaction Server 'wgate.dll' Input Validation Hole Permits Cross-Site Scripting Attacks
|
|
Apr 9 2008
|
SAP NetWeaver Input Validation Hole Permits Cross-Site Scripting Attacks
|
|
Mar 11 2008
|
MaxDB 'vserver' Lets Remote Users Execute Arbitrary Code
|
|
Mar 11 2008
|
MaxDB 'sdbstarter' Utility Lets Local Users Gain Root Privileges
|
|
Feb 4 2008
|
SAPlpd Memory Corruption Bugs Let Remote Users Execute Arbitrary Code
|
|
Jan 9 2008
|
MaxDB 'cons.exe' Lets Remote Users Execute Arbitrary Commands on the Target System
|
|
Jul 6 2007
|
SAP DB Web Server Stack Overflow Lets Remote Users Execute Arbitrary Code
|
|
Jul 6 2007
|
SAP Message Server Heap Overflow Lets Remote Users Execute Arbitrary Code
|
|
Jul 6 2007
|
SAP Internet Graphics Server Input Validation Hole Permits Cross-Site Scripting Attacks
|
|
Jul 6 2007
|
SAP Internet Communication Manager Lets Remote Users Deny Service
|
|
Feb 12 2007
|
SAP Web Application Server Lets Remote Users Traverse the Directory and Deny Service
|
|
Jan 18 2007
|
SAP Internet Graphics Server Buffer Overflow in Processing ADM:GETLOGFILE Command Errors Lets Remote Users Execute Arbitrary Code
|
|
Dec 6 2006
|
SAP Internet Graphics Server Lets Remote Users Remove Files
|
|
Dec 6 2006
|
SAP Internet Graphics Server Undocumented Features Let Remote Users Access Files, Perform Actions, and Deny Service
|
|
Aug 10 2006
|
SAP Internet Graphics Server Buffer Overflow Lets Remote Users Execute Arbitrary Code and Deny Service
|
|
May 18 2006
|
SAP sapdba Command for Informix Environment Variable Bug Lets Local Users Gain Elevated Privileges
|
|
May 15 2006
|
SAP Business Connector Lets Remote Authenticated Users View and Delete Files
|
|
Mar 1 2006
|
SAP Web Application Server Lets Remote Users Inject Data into HTTP Responses
|
|
Feb 16 2006
|
SAP Business Connector Bugs Let Remote Users View or Delete Files and Conduct Phishing Attacks
|
|
Nov 9 2005
|
SAP Web Application Server Input Validation Holes Permit HTTP Response Splitting, Cross-Site Scripting, and Phishing Attacks
|
|
Jul 25 2005
|
SAP Internet Graphics Server Input Validation Hole Discloses Files to Remote Users
|
|
Mar 17 2004
|
mySAP Host Header Buffer Overflows Let Remote Users Execute Arbitrary Code
|
|
Mar 17 2004
|
SAP Internet Transaction Server WGate Fomat String Flaw Lets Remote Users Execute Arbitrary Code
|
|
Mar 17 2004
|
SAP Internet Transaction Server AGate Buffer Overflows Let Remote Users Execute Arbitrary Code
|
|
Nov 18 2003
|
SAP DB web-tools Have Multiple Flaws That Disclose Files, Permit Remote Code Execution, and Grant Access to Remote Users
|
|
Nov 17 2003
|
SAP DB 'niserver' Buffer Overflow Lets Remote Users Gain Root/LocalSystem Privileges
|
|
Nov 17 2003
|
SAP DB NETAPI32.DLL Path Specification Flaw Lets Local Users Gain SYSTEM Privileges
|
|
Aug 31 2003
|
SAP Internet Transaction Server Bugs in 'wgate.dll' Disclose Files to Remote Users
|
|
Apr 22 2003
|
SAP DB Helper Tools Provide Root Access to Local Users
|
|
Mar 31 2003
|
SAP DB File Permissions Let Local Users Modify Files to Gain Elevated Privileges
|
|
Mar 5 2003
|
SAP R/3 Remote Function Call API Lets Remote Users Conduct Password Guessing Attempts
|
|
Dec 4 2002
|
SAP DB Database Symlink Bug Lets Local Users Execute Arbitrary Files With Root Privileges
|
