Details of VAR-201101-0400

ID

VAR-201101-0400

TITLE

SAP Management Console has a vulnerability when processing some administrative commands

Trust: 0.6

sources: CNVD: CNVD-2011-0047

DESCRIPTION

The SAP Management Console has errors in processing some of the administrative commands, and an attacker can exploit the vulnerability to restart the service. The SAP Management Console is a management console for SAP products. Some methods in the \"sapstartsrv\" SOAP service have errors that can leak sensitive information such as log file lists and their contents, file parameters, and developer tracking information. Attackers can exploit these issues to a cause a denial-of-service condition or obtain sensitive information. The following versions are vulnerable: SAP KERNEL RELEASE 6.40 SAP KERNEL RELEASE 7.00 SAP KERNEL RELEASE 7.01 SAP KERNEL RELEASE 7.10 SAP KERNEL RELEASE 7.11 SAP KERNEL RELEASE 7.20. ---------------------------------------------------------------------- Secure your corporate defenses and reduce complexity in handling vulnerability threats with the new Secunia Vulnerability Intelligence Manager (VIM). Request a free trial: http://secunia.com/products/corporate/vim/ ---------------------------------------------------------------------- TITLE: SAP Management Console Two Vulnerabilities SECUNIA ADVISORY ID: SA42788 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/42788/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=42788 RELEASE DATE: 2011-01-07 DISCUSS ADVISORY: http://secunia.com/advisories/42788/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/42788/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=42788 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: Jordan Santarsieri has reported some vulnerabilities in SAP KERNEL, which can be exploited by malicious people to disclose sensitive information and cause a DoS (Denial of Service). Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ PROVIDED AND/OR DISCOVERED BY: Jordan Santarsieri, Onapsis. ORIGINAL ADVISORY: http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2011-001 http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2011-002 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.8

sources: CNVD: CNVD-2011-0047 // CNVD: CNVD-2011-0046 // BID: 45690 // IVD: f8d771cc-1fa3-11e6-abef-000c29c66e3d // IVD: fa740b30-1fa3-11e6-abef-000c29c66e3d // PACKETSTORM: 97285

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 1.6

sources: IVD: f8d771cc-1fa3-11e6-abef-000c29c66e3d // IVD: fa740b30-1fa3-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-0047 // CNVD: CNVD-2011-0046

AFFECTED PRODUCTS

vendor:	sap	model:	kernel release	scope:	eq	version:	7.20	Trust: 1.9
vendor:	sap	model:	kernel release	scope:	eq	version:	6.40	Trust: 1.5
vendor:	sap	model:	kernel release	scope:	eq	version:	7.00	Trust: 1.5
vendor:	sap	model:	kernel release	scope:	eq	version:	7.01	Trust: 1.5
vendor:	sap	model:	kernel release	scope:	eq	version:	7.10	Trust: 1.5
vendor:	sap	model:	kernel release	scope:	eq	version:	7.11	Trust: 1.5
vendor:	sap	model:	kernel release	scope:	eq	version:	6.40*	Trust: 0.4
vendor:	sap	model:	kernel release	scope:	eq	version:	7.00*	Trust: 0.4
vendor:	sap	model:	kernel release	scope:	eq	version:	7.01*	Trust: 0.4
vendor:	sap	model:	kernel release	scope:	eq	version:	7.10*	Trust: 0.4
vendor:	sap	model:	kernel release	scope:	eq	version:	7.11*	Trust: 0.4

sources: IVD: f8d771cc-1fa3-11e6-abef-000c29c66e3d // IVD: fa740b30-1fa3-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-0047 // CNVD: CNVD-2011-0046 // BID: 45690

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD:	f8d771cc-1fa3-11e6-abef-000c29c66e3d
value:	LOW
Trust: 0.2
IVD:	fa740b30-1fa3-11e6-abef-000c29c66e3d
value:	LOW
Trust: 0.2

IVD:	f8d771cc-1fa3-11e6-abef-000c29c66e3d
severity:	NONE
baseScore:	NONE
vectorString:	NONE
accessVector:	NONE
accessComplexity:	NONE
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	UNKNOWN
Trust: 0.2
IVD:	fa740b30-1fa3-11e6-abef-000c29c66e3d
severity:	NONE
baseScore:	NONE
vectorString:	NONE
accessVector:	NONE
accessComplexity:	NONE
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	UNKNOWN
Trust: 0.2

sources: IVD: f8d771cc-1fa3-11e6-abef-000c29c66e3d // IVD: fa740b30-1fa3-11e6-abef-000c29c66e3d

THREAT TYPE

network

Trust: 0.3

sources: BID: 45690

TYPE

Unknown

Trust: 0.3

sources: BID: 45690

PATCH

title:	A vulnerability in the SAP Management Console that handles some of the administrative commands	url:	https://www.cnvd.org.cn/patchinfo/show/2498	Trust: 0.6
title:	SAP Management Console \"sapstartsrv\" Some methods in the SOAP service have vulnerable patches	url:	https://www.cnvd.org.cn/patchinfo/show/2497	Trust: 0.6

sources: CNVD: CNVD-2011-0047 // CNVD: CNVD-2011-0046

EXTERNAL IDS

db:	BID	id:	45690	Trust: 1.5
db:	SECUNIA	id:	42788	Trust: 1.3
db:	CNVD	id:	CNVD-2011-0047	Trust: 0.8
db:	CNVD	id:	CNVD-2011-0046	Trust: 0.8
db:	IVD	id:	F8D771CC-1FA3-11E6-ABEF-000C29C66E3D	Trust: 0.2
db:	IVD	id:	FA740B30-1FA3-11E6-ABEF-000C29C66E3D	Trust: 0.2
db:	PACKETSTORM	id:	97285	Trust: 0.1

sources: IVD: f8d771cc-1fa3-11e6-abef-000c29c66e3d // IVD: fa740b30-1fa3-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-0047 // CNVD: CNVD-2011-0046 // BID: 45690 // PACKETSTORM: 97285

REFERENCES

url:	http://secunia.com/advisories/42788/	Trust: 1.3
url:	http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2011-001	Trust: 0.4
url:	http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2011-002	Trust: 0.4
url:	https://service.sap.com/sap/support/notes/1439348	Trust: 0.3
url:	http://secunia.com/products/corporate/evm/	Trust: 0.1
url:	http://secunia.com/advisories/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/	Trust: 0.1
url:	http://secunia.com/advisories/42788/#comments	Trust: 0.1
url:	http://secunia.com/products/corporate/vim/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/personal/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	https://ca.secunia.com/?page=viewadvisory&vuln_id=42788	Trust: 0.1
url:	http://secunia.com/advisories/about_secunia_advisories/	Trust: 0.1

sources: CNVD: CNVD-2011-0047 // CNVD: CNVD-2011-0046 // BID: 45690 // PACKETSTORM: 97285

CREDITS

Jordan Santarsieri, Onapsis

Trust: 0.3

sources: BID: 45690

SOURCES

db:	IVD	id:	f8d771cc-1fa3-11e6-abef-000c29c66e3d
db:	IVD	id:	fa740b30-1fa3-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2011-0047
db:	CNVD	id:	CNVD-2011-0046
db:	BID	id:	45690
db:	PACKETSTORM	id:	97285

LAST UPDATE DATE

2022-05-17T01:46:46.051000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2011-0047	date:	2011-01-07T00:00:00
db:	CNVD	id:	CNVD-2011-0046	date:	2011-01-07T00:00:00
db:	BID	id:	45690	date:	2011-01-06T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	f8d771cc-1fa3-11e6-abef-000c29c66e3d	date:	2011-01-07T00:00:00
db:	IVD	id:	fa740b30-1fa3-11e6-abef-000c29c66e3d	date:	2011-01-07T00:00:00
db:	CNVD	id:	CNVD-2011-0047	date:	2011-01-07T00:00:00
db:	CNVD	id:	CNVD-2011-0046	date:	2011-01-07T00:00:00
db:	BID	id:	45690	date:	2011-01-06T00:00:00
db:	PACKETSTORM	id:	97285	date:	2011-01-06T05:11:39