CVE-2015-4092

Currently unrated

Key Information:

Vendor: SAP
Status: Afaria
Vendor: CVE Published:; 26 May 2015

Summary

Buffer overflow in the XComms process in SAP Afaria 7.00.6620.2 SP5 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, aka SAP Security Note 2153690.

References

https://erpscan.io/advisories/erpscan-15-012-sap-afaria-7...

x_refsource_MISC

http://www.securityfocus.com/archive/1/536238/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://seclists.org/fulldisclosure/2015/May/96

mailing-listx_refsource_FULLDISC

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 26, 2015
Vulnerability Reserved
May 26, 2015