CVE-2006-5785

Properties

Published:
06.11.2006
Updated:
30.03.2007
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:L/Au:NR/C:N/I:N/A:P/B:N)
    Product:
    SAP: SAP Web Application Server
    SAP: SAP Web Application Server

    Vulnerability description

    Unspecified vulnerability in SAP Web Application Server 6.40 before patch 136 and 7.00 before patch 66 allows remote attackers to cause a denial of service (enserver.exe crash) via a 0x72F2 sequence on UDP port 64999.

    References:

    BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/450394/100/0/threaded
    BID: http://www.securityfocus.com/bid/20877
    FRSIRT: http://www.frsirt.com/english/advisories/2006/4318
    SECUNIA: http://secunia.com/advisories/22677
    XF: http://xforce.iss.net/xforce/xfdb/29981
    BID: http://www.securityfocus.com/bid/20873
    BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/459499/100/0/threaded
    SECTRACK: http://www.securitytracker.com/id?1017628