Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) long parameter value, (2) crafted string size field, or (3) long Parameter Name string in a package with opcode 0x43 and sub opcode 0x4 to TCP port 3900.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-08-15T21:00:00Z
Updated: 2024-09-17T00:10:48.262Z
Reserved: 2012-08-15T00:00:00Z
Link: CVE-2012-4341
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-08-15T21:55:05.353
Modified: 2024-11-21T01:42:42.603
Link: CVE-2012-4341
Redhat
No data.