SAP NetWeaver BW – XML External Entity Vulnerability
Data de publicação: 13 julho 2016
Schweregrad: : Crítico
Descrição
XXE vulnerability in SAP BW can lead to arbitrary file reading or an SMBRelay attack. By exploiting this vulnerability, an internal or external attacker will be able to access any files located in the SAP server file system. With the help of this access it is possible to obtain sensitive technical and business-related information stored in the vulnerable SAP system.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1005576