Details of VAR-201011-0283

ID

VAR-201011-0283

TITLE

SAP NetWeaver Composition Environment sapstartsrv.exe Service Remote Code Execution Vulnerability

Trust: 0.8

sources: IVD: 7d6aaa1c-1fa9-11e6-abef-000c29c66e3d // CNVD: CNVD-2010-2725

DESCRIPTION

The SAP NetWeaver Composition Environment provides a set of tools for developing, running, and managing SOA-based composite applications. The SAP NetWeaver Composition Environment defaults to a security vulnerability in the sapstartsrv.exe process on ports 50013 and 50113. If a user submits a malformed SOAP request through a POST request, it may result in writing controllable data to an existing function pointer. An attacker can exploit this issue to execute arbitrary code with user-level privileges. Failed exploit attempts will result in a denial-of-service condition

Trust: 0.99

sources: CNVD: CNVD-2010-2725 // BID: 44731 // IVD: 7d6aaa1c-1fa9-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 7d6aaa1c-1fa9-11e6-abef-000c29c66e3d // CNVD: CNVD-2010-2725

AFFECTED PRODUCTS

vendor:	sap	model:	netweaver composition environment	scope:	-	version:	-	Trust: 0.6
vendor:	sap	model:	netweaver nw04 sp18	scope:	-	version:	-	Trust: 0.3
vendor:	sap	model:	netweaver composition environment	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 7d6aaa1c-1fa9-11e6-abef-000c29c66e3d // CNVD: CNVD-2010-2725 // BID: 44731

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD:	7d6aaa1c-1fa9-11e6-abef-000c29c66e3d
value:	HIGH
Trust: 0.2

IVD:	7d6aaa1c-1fa9-11e6-abef-000c29c66e3d
severity:	NONE
baseScore:	NONE
vectorString:	NONE
accessVector:	NONE
accessComplexity:	NONE
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	UNKNOWN
Trust: 0.2

sources: IVD: 7d6aaa1c-1fa9-11e6-abef-000c29c66e3d

THREAT TYPE

network

Trust: 0.3

sources: BID: 44731

TYPE

Boundary Condition Error

Trust: 0.3

sources: BID: 44731

PATCH

title:

SAP NetWeaver Composition Environment sapstartsrv.exe service patch for remote code execution vulnerability

url:

https://www.cnvd.org.cn/patchinfo/show/1654

Trust: 0.6

sources: CNVD: CNVD-2010-2725

EXTERNAL IDS

db:	BID	id:	44731	Trust: 0.9
db:	CNVD	id:	CNVD-2010-2725	Trust: 0.8
db:	IVD	id:	7D6AAA1C-1FA9-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: 7d6aaa1c-1fa9-11e6-abef-000c29c66e3d // CNVD: CNVD-2010-2725 // BID: 44731

REFERENCES

url:	http://marc.info/?l=full-disclosure&m=128925483413271&q=p3	Trust: 0.6
url:	http://www.sdn.sap.com/irj/sdn/nw-ce	Trust: 0.3
url:	http://seclists.org/fulldisclosure/2010/nov/69	Trust: 0.3

sources: CNVD: CNVD-2010-2725 // BID: 44731

CREDITS

AbdulAziz Hariri

Trust: 0.3

sources: BID: 44731

SOURCES

db:	IVD	id:	7d6aaa1c-1fa9-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2010-2725
db:	BID	id:	44731

LAST UPDATE DATE

2022-05-17T02:10:49.337000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2010-2725	date:	2010-11-10T00:00:00
db:	BID	id:	44731	date:	2010-11-08T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	7d6aaa1c-1fa9-11e6-abef-000c29c66e3d	date:	2010-11-10T00:00:00
db:	CNVD	id:	CNVD-2010-2725	date:	2010-11-10T00:00:00
db:	BID	id:	44731	date:	2010-11-08T00:00:00