The DiagTraceR3Info function in the Dialog processor in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2, when a certain Developer Trace configuration is enabled, allows remote attackers to execute arbitrary code via a crafted SAP Diag packet.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2012-05-15T01:00:00

Updated: 2024-08-06T19:42:30.660Z

Reserved: 2012-05-10T00:00:00

Link: CVE-2012-2611

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-05-15T04:21:43.547

Modified: 2024-11-21T01:39:18.183

Link: CVE-2012-2611

cve-icon Redhat

No data.