CVE-2006-6010

Currently unrated

Key Information:

Vendor: SAP
Status: SAP Web Application Server
Vendor: CVE Published:; 21 November 2006

Summary

SAP allows remote attackers to obtain potentially sensitive information such as operating system and SAP version via an RFC_SYSTEM_INFO RfcCallReceive request, a different vulnerability than CVE-2003-0747.

References

http://securityreason.com/securityalert/1889

third-party-advisoryx_refsource_SREASON

https://exchange.xforce.ibmcloud.com/vulnerabilities/39997

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/451378/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 21, 2006
Vulnerability Reserved
Nov 21, 2006