Vulnerabilities > CVE-2006-4134 - Remote Denial Of Service vulnerability in SAP Internet Graphics Server

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

sap

NVD

Published: 2006-08-14

Updated: 2018-10-17

Summary

Unspecified vulnerability related to a "design flaw" in SAP Internet Graphics Service (IGS) 6.40 and earlier and 7.00 and earlier allows remote attackers to cause a denial of service (service shutdown) via certain HTTP requests. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Internet Graphics Server 6.40 SAP Internet Graphics Server 6.40_Patch_11 SAP Internet Graphics Server 6.40_Patch_15 SAP Internet Graphics Server 7.00_Patch_3	4

References

http://marc.info/?l=bugtraq&m=115524314804055&w=2
http://secunia.com/advisories/21448
http://securityreason.com/securityalert/1390
http://securitytracker.com/id?1016675
http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_SAP_IGS_Remote_Denial_of_Service.pdf
http://www.securityfocus.com/archive/1/442838/100/0/threaded
http://www.securityfocus.com/bid/19469
http://www.vupen.com/english/advisories/2006/3267
https://exchange.xforce.ibmcloud.com/vulnerabilities/28328