SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  SAP NetWeaver CRM Log injection Remote Command Execution 1

Category: WEB-ATTACKS      

SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing "traverse to parent directory" are passed through to the file APIs.


Relevant Information