Buffer Overflow in SAP DB Web-Tools Affecting Multiple Versions
CVE-2003-0944

Currently unrated

Key Information:

Vendor: SAP
Status: SAP Db
Vendor: CVE Published:; 15 December 2003

What is CVE-2003-0944?

A vulnerability exists in the WAECHO default service of the web-tools in SAP DB prior to version 7.4.03.30, which allows remote attackers to exploit a buffer overflow. By sending a specially crafted URL with an excessively long requestURI, attackers can execute arbitrary code on the affected system, potentially compromising security and system integrity. It is crucial for users of SAP DB to apply the necessary patches to mitigate this risk.

References

http://www.atstake.com/research/advisories/2003/a111703-2...

vendor-advisoryx_refsource_ATSTAKE

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 15, 2003