Buffer Overflow in SAP NetWeaver Dispatcher Affects SAP Kernel Products
CVE-2014-9595

Currently unrated

Key Information:

Vendor: SAP
Status: SAP Kernel
Vendor: CVE Published:; 15 January 2015

Summary

A buffer overflow vulnerability exists in the SAP NetWeaver Dispatcher that may allow remote authenticated users to perform a denial of service attack or potentially execute arbitrary code. This issue is related to the Spool System and is outlined in SAP Note 2061271. It affects specific versions of the SAP Kernel, particularly the 32-bit version 7.00 and the 64-bit version 7.40, posing a significant risk if exploited through certain vectors.

References

https://erpscan.io/advisories/erpscan-14-024-sap-kernel-r...

x_refsource_MISC

http://secunia.com/advisories/62150

third-party-advisoryx_refsource_SECUNIA

https://erpscan.io/press-center/blog/sap-critical-patch-u...

x_refsource_MISC

Timeline

Vulnerability published
Jan 15, 2015
Vulnerability Reserved
Jan 15, 2015