Vulnerabilities > CVE-2001-0366 - Unspecified vulnerability in SAP R 3 web Application Server Demo and Saposcol

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

sap

NVD

Published: 2001-06-27

Updated: 2017-10-10

Summary

saposcol in SAP R/3 Web Application Server Demo before 1.5 trusts the PATH environmental variable to find and execute the expand program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse expand program.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP SAP R 3 WEB Application Server Demo * SAP Saposcol 1.0 SAP Saposcol 1.1 SAP Saposcol 1.2 SAP Saposcol 1.3	5

References

ftp://ftp.sap.com/pub/linuxlab/saptools/README.saposcol
http://www.securityfocus.com/archive/1/180498
http://www.securityfocus.com/bid/2662
https://exchange.xforce.ibmcloud.com/vulnerabilities/6487