SAP BusinessObjects Suite Installer - version 420, 430, allows an attacker within the network to create a directory under temporary directory and link it to a directory with operating system files. On successful exploitation the attacker can delete all the operating system files causing a limited impact on integrity and completely compromising the availability of the system.
oryginał ENCVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:HSap Businessobjects
APPSap420430
Powiązane podatności
SAP BusinessObjects, versions 4.2 and 4.3, (Visual Difference) allows an attacker to upload any file (includin...
During an update of SAP BusinessObjects Enterprise, Central Management Server (CMS) - versions 420, 430, authe...
Under certain conditions SAP BusinessObjects Business Intelligence platform (Central Management Server), versi...
Under certain conditions SAP BusinessObjects Business Intelligence platform (Analysis for OLAP), versions 4.2 ...
Improper Session Management in SAP Business Objects, 4.0, from 4.10, from 4.20, 4.30, CMC/BI Launchpad/Fiorifi...