Denial of Service Vulnerability in SAP LPD 6.28 and Earlier by SAP
CVE-2008-0620

Currently unrated

Key Information:

Vendor: SAP
Status: SAPgui; SAPlpd; SAPsprint
Vendor: CVE Published:; 6 February 2008

What is CVE-2008-0620?

SAP LPD versions 6.28 and earlier, included in SAP GUI 7.10 and SAPSprint prior to version 1018, are susceptible to a remote denial of service attack. An attacker can exploit this vulnerability by sending a specific 0x53 LPD command, leading to unexpected server termination. This flaw poses a significant risk as it can disrupt services and hinder operational stability for affected organizations.

References

http://secunia.com/advisories/28786

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/archive/1/487575/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.vupen.com/english/advisories/2008/0409

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Feb 6, 2008
Vulnerability Reserved
Feb 5, 2008