Denial of Service Vulnerability in SAP Kernel Affecting SAP NetWeaver and Web Application Server
CVE-2009-4603

Currently unrated

Key Information:

Vendor: SAP
Status: SAP Kernel
Vendor: CVE Published:; 12 January 2010

Summary

A vulnerability exists in the sapstartsrv.exe component of the SAP Kernel that allows remote attackers to execute malicious requests, resulting in a denial of service. This can lead to a shutdown of the Management Console, potentially disrupting services relying on SAP NetWeaver and Web Application Server. Affected versions include multiple iterations of SAP Kernel from 6.40 to 7.20 and various releases of SAP NetWeaver and Web Application servers.

References

http://www.securitytracker.com/id?1023319

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/37684

third-party-advisoryx_refsource_SECUNIA

http://www.cybsec.com/vuln/CYBSEC_SAP_sapstartsrv_DoS.pdf

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 12, 2010