SAP

Rfc Library

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 3.52%
  • Veröffentlicht 02.06.2015 14:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SD...

Exploit
  • EPSS 2.13%
  • Veröffentlicht 02.06.2015 14:59:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The LZH decompression implementation (CsObjectInt::BuildHufTree function in vpa108csulzh.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and ot...

  • EPSS 2.22%
  • Veröffentlicht 10.04.2007 23:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:33

The TRUSTED_SYSTEM_SECURITY function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to verify the existence of users and groups on systems and domains via unspecified vectors, a different vulnerability than CVE-2006-6010...

  • EPSS 1.75%
  • Veröffentlicht 10.04.2007 23:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:33

The RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to obtain sensitive information (external RFC server configuration data) via unspecified vectors, a different vulnerability than CVE-2006-6010...

  • EPSS 4.37%
  • Veröffentlicht 10.04.2007 23:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:33

Buffer overflow in the RFC_START_PROGRAM function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Detail...

  • EPSS 6.66%
  • Veröffentlicht 10.04.2007 23:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:33

Buffer overflow in the RFC_START_GUI function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details wi...

  • EPSS 6.66%
  • Veröffentlicht 10.04.2007 23:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:33

Buffer overflow in the SYSTEM_CREATE_INSTANCE function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. D...

  • EPSS 2.55%
  • Veröffentlicht 10.04.2007 23:19:00
  • Zuletzt bearbeitet 16.06.2026 22:38:34

The RFC_SET_REG_SERVER_PROPERTY function in the SAP RFC Library 6.40 and 7.00 before 20070109 implements an option for exclusive access to an RFC server, which allows remote attackers to cause a denial of service (client lockout) via unspecified vect...