CyberSec.Space Logo
CVEブラウザに戻る

CVE-2003-1039

HIGH
7.5
CVSS Severity Score
EPSS Score0.1770%
EPSS Percentile30.04th
Published2004年4月15日
Last Modified2026年4月16日

Vulnerability Description

Multiple buffer overflows in the mySAP.com architecture for SAP allow remote attackers to execute arbitrary code via a long HTTP Host header to (1) Message Server, (2) Web Dispatcher, or (3) Application Server.

Affected Platforms (CPE)

📦
Sap

Mysap Business Suite

All versions

References & Advisories

🔗 http://www.phenoelit.de/stuff/Phenoelit20c3.pd
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15513
🔗 http://www.phenoelit.de/stuff/Phenoelit20c3.pd
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15513

関連する脆弱性情報

CVE-2003-109010.0

Buffer overflow in AbsoluteTelnet before 2.12 RC10 allows remote attackers to execute arbitrary code via a long window title.

CVE-2003-016110.0

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions ...

CVE-2003-030410.0

one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to create administrator accounts by directly calling the inst...

CVE-2003-004110.0

Kerberos FTP client allows remote FTP sites to execute arbitrary code via a pipe (|) character in a filename that is retrieved by ...