7.5
CVE-2003-1036
- EPSS 2.57%
- Veröffentlicht 15.04.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAP ≫ Internet Transaction Server Version <= 4.6_pl463
SAP ≫ Internet Transaction Server Version <= 6.10_pl30
SAP ≫ Internet Transaction Server Version <= 6.20_pl7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.57% | 0.831 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.phenoelit.de/stuff/Phenoelit20c3.pd
https://exchange.xforce.ibmcloud.com/vulnerabilities/14186