CVE-2016-9832
CVE-2016-9832
PricewaterhouseCoopers (PwC) ACE-ABAP 8.10.304 for SAP Security allows remote authenticated users to conduct ABAP injection attacks and execute arbitrary code via (1) SAPGUI or (2) Internet Communication Framework (ICF) over HTTP or HTTPS, as demonstrated by WEBGUI or Report.
Productos afectados
n/a · n/a¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://packetstormsecurity.com/files/140062/PwC-ACE-Software-For-SAP-Security-8.10.304-ABAP-Injection.htmlhttp://seclists.org/fulldisclosure/2016/Dec/33https://www.esnc.de/security-advisories/vulnerability-in-pwc-ace-for-sap-securityhttp://www.securityfocus.com/archive/1/539883/100/0/threadedhttp://www.securityfocus.com/archive/1/539883/30/0/threadedhttp://www.securityfocus.com/bid/94733