» 2018 » 2월

CVE-2018-2386

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2386

Under certain conditions a malicious user provoking an out of bounds buffer overflow can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53.

Source: CVE-2018-2386

CVE-2018-2389

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2389

Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, hiding important information in the log file.

Source: CVE-2018-2389

CVE-2018-2388

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2388

Stored cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.

Source: CVE-2018-2388

CVE-2018-2391

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2391

Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS portwatcher service.

Source: CVE-2018-2391

CVE-2018-2383

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2383

Reflected cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.

Source: CVE-2018-2383

CVE-2018-2390

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2390

Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS Chart service.

Source: CVE-2018-2390

CVE-2018-2393

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2393

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.

Source: CVE-2018-2393

CVE-2018-2396

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2396

Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, using IGS Interpreter service.

Source: CVE-2018-2396

CVE-2018-2382

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2382

A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to store graphics in a controlled area and as such gain information from system area, which is not available to the user otherwise.

Source: CVE-2018-2382

CVE-2018-2369

Posted on 2018년 2월 14일2018년 2월 14일 by admin

CVE-2018-2369

Under certain conditions SAP HANA, 1.00, 2.00, allows an unauthenticated attacker to access information which would otherwise be restricted. An attacker can misuse the authentication function of the SAP HANA server on its SQL interface and disclose 8 bytes of the server process memory. The attacker cannot influence or predict the location of the leaked memory.

Source: CVE-2018-2369