Vulnerabilities > CVE-2010-3980 - Unspecified vulnerability in SAP Businessobjects 3.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Dswsbobje in SAP BusinessObjects Enterprise XI 3.2 does not limit the number of CUIDs that may be requested, which allows remote authenticated users to cause a denial of service via a large numCuids value in a GenerateCuids SOAPAction to the dswsbobje/services/biplatform URI.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |