Information Disclosure in SAP Internet Transaction Server by SAP
CVE-2003-0747

Currently unrated

Key Information:

Vendor

SAP

Vendor
CVE Published:
20 October 2003

What is CVE-2003-0747?

The wgate.dll component in SAP Internet Transaction Server (ITS) version 4620.2.0.323011 is susceptible to an information disclosure vulnerability. This flaw allows remote attackers to exploit incorrect parameters such as ~service, ~templatelanguage, ~language, ~theme, or ~template to extract sensitive information, potentially exposing directory structures and operating system details through misleading error messages.

References

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.