Description
Specially prepared HTTP requests or content length headers
may lead to an incorrect processing of this
request in the back end. (HTTP Request Smuggling)
Available fix and Supported packages
- SAP_BASIS | 640 | 640
- SAP_BASIS | 700 | 701
- SAP_BASIS | 710 | 710
- SAP KERNEL 6.40 32-BIT | SP237 | 000237
- SAP KERNEL 6.40 32-BIT UNICODE | SP237 | 000237
- SAP KERNEL 6.40 64-BIT | SP237 | 000237
- SAP KERNEL 6.40 64-BIT UNICODE | SP237 | 000237
- SAP KERNEL 7.00 32-BIT | SP000 | 000164
- SAP KERNEL 7.00 32-BIT | SP164 | 000164
- SAP KERNEL 7.00 32-BIT UNICODE | SP000 | 000164
- SAP KERNEL 7.00 32-BIT UNICODE | SP164 | 000164
- SAP KERNEL 7.00 64-BIT | SP000 | 000164
- SAP KERNEL 7.00 64-BIT | SP164 | 000164
- SAP KERNEL 7.00 64-BIT UNICODE | SP000 | 000164
- SAP KERNEL 7.00 64-BIT UNICODE | SP164 | 000164
Affected component
- BC-CST-WDP
Web Dispatcher
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1174895
