Vulnerabilities > CVE-2003-1039 - Remote Security vulnerability in Mysap Business Suite

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

sap

NVD

Published: 2004-04-15

Updated: 2017-07-11

Summary

Multiple buffer overflows in the mySAP.com architecture for SAP allow remote attackers to execute arbitrary code via a long HTTP Host header to (1) Message Server, (2) Web Dispatcher, or (3) Application Server.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Mysap Business Suite *	1

References

http://www.phenoelit.de/stuff/Phenoelit20c3.pd
https://exchange.xforce.ibmcloud.com/vulnerabilities/15513