Buffer Overflow in SAP NetWeaver Dispatcher Affects SAP Kernel by SAP
CVE-2014-9594

Currently unrated

Key Information:

Vendor: SAP
Status: SAP Kernel
Vendor: CVE Published:; 15 January 2015

Summary

The vulnerability in SAP NetWeaver Dispatcher allows remote authenticated users to exploit a buffer overflow in SAP Kernel versions 7.00 (32-bit) and 7.40 (64-bit). This issue may lead to a denial of service, or potentially enable attackers to execute arbitrary code through unspecified vectors related to the ABAP Virtual Machine. For detailed mitigation steps and further information, please refer to SAP Note 2059734 and follow relevant advisories.

References

http://secunia.com/advisories/62150

third-party-advisoryx_refsource_SECUNIA

https://erpscan.io/advisories/erpscan-14-025-sap-kernel-r...

x_refsource_MISC

https://erpscan.io/press-center/blog/sap-critical-patch-u...

x_refsource_MISC

Timeline

Vulnerability published
Jan 15, 2015
Vulnerability Reserved
Jan 15, 2015