ID
VAR-201002-0338
TITLE
SAP J2EE Engine Core Unspecified Phishing Vulnerability
Trust: 0.3
DESCRIPTION
SAP J2EE Engine Core is prone to a vulnerability that can aid in phishing attacks. Successful exploits may allow attackers to redirect victims to a malicious website, which may lead to other attacks. Versions prior to the following are vulnerable: J2EE Engine Core 6.40 SP26 J2EE Engine Core 7.00 SP22 J2EE Engine Core 7.01 SP07 J2EE Engine Core 7.02 SP03 Additional products that include the J2EE Engine Core may also be vulnerable.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | sap | model: | j2ee engine core | scope: | eq | version: | 7.02 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core | scope: | eq | version: | 7.01 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core sp02 | scope: | eq | version: | 7.00 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core | scope: | eq | version: | 7.00 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core | scope: | eq | version: | 6.40 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core sp03 | scope: | ne | version: | 7.02 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core sp07 | scope: | ne | version: | 7.01 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core sp22 | scope: | ne | version: | 7.00 | Trust: 0.3 |
| vendor: | sap | model: | j2ee engine core sp26 | scope: | ne | version: | 6.40 | Trust: 0.3 |
THREAT TYPE
network
Trust: 0.3
TYPE
Input Validation Error
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 38183 | Trust: 0.3 |
REFERENCES
| url: | http://www.sap.com/ | Trust: 0.3 |
| url: | /archive/1/509500 | Trust: 0.3 |
| url: | /archive/1/509626 | Trust: 0.3 |
CREDITS
Mariano Nuez Di Croce
Trust: 0.3
SOURCES
| db: | BID | id: | 38183 |
LAST UPDATE DATE
2022-05-17T01:46:50.258000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 38183 | date: | 2010-02-19T16:41:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 38183 | date: | 2010-02-11T00:00:00 |