CyberSec.Space Logo
Back to CVE Browser

CVE-2003-1039

HIGH
7.5
CVSS Severity Score
EPSS Score0.1770%
EPSS Percentile30.04th
PublishedApr 15, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in the mySAP.com architecture for SAP allow remote attackers to execute arbitrary code via a long HTTP Host header to (1) Message Server, (2) Web Dispatcher, or (3) Application Server.

Affected Platforms (CPE)

πŸ“¦
Sap

Mysap Business Suite

All versions

References & Advisories

πŸ”— http://www.phenoelit.de/stuff/Phenoelit20c3.pd
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/15513
πŸ”— http://www.phenoelit.de/stuff/Phenoelit20c3.pd
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/15513

Related Vulnerabilities

CVE-2003-109010.0

Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code via a long window title.

CVE-2003-016110.0

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions ...

CVE-2003-071510.0

Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers...

CVE-2003-004110.0

Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by ...