Skip links
Vahagn Vardanian

Vahagn Vardanian

Co-founder and CTO of RedRays

Directory traversal in IS-OIL-PRA-REV-JE, SAP security note 1601530

Description

***********************************************************************WARNING: This is an IS-OIL / IS-MINE / IS-CWM specific note. If you DON’T have IS-OIL / IS-MINE / IS-CWM installed on your system, this note does not apply to you. If this note is applied and you do not have IS-OIL / IS-MINE / IS-CWM installed, you could cause serious damage to your system.
***********************************************************************

Potential directory traversal in the following components: IS-OIL-PRA-REV-JE (Load JEINTF).

Available fix and Supported packages

  • IS-OIL | 46C | 46C
  • IS-OIL | 472 | 472
  • IS-OIL | 600 | 600
  • IS-OIL | 602 | 602
  • IS-OIL | 603 | 603
  • IS-PRA | 604 | 604
  • IS-PRA | 605 | 605
  • IS-OIL 600 | SAPK-60020INISOIL |
  • IS-OIL 602 | SAPK-60210INISOIL |
  • IS-OIL 603 | SAPK-60309INISOIL |
  • IS-OIL 472 | SAPKI47061 |
  • IS-OIL 46C | SAPKI4C141 |
  • IS-PRA 604 | SAPK-60410INISPRA |
  • IS-PRA 605 | SAPK-60506INISPRA |

Affected component

    IS-OIL-PRA-REV
    Revenue

CVSS

Score: 0

PoC

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1601530

TAGS

#Directory-traversal
#IS-OIL-PRA-REV-JE
#Load-JEINTF-Report

Explore More

RedRays AI for ABAP Code Security

Empowering Secure, Efficient, and Compliant SAP ABAP Development—in Real Time and Without Data Retention In today’s rapidly evolving business landscape, organizations increasingly

Special offer for SAP Security Udemy course!

$ 9.99

Join “SAP Security Core Concepts and Security Administration” which is part of the Blackhat course series.