Skip links

Potential denial of service in Message Server, SAP security note 2223688

Description

An attacker can remotely exploit the message server, rendering it, and potentially the resources that are used to serve Message Server, unavailable.

Available fix and Supported packages

  • KRNL32NUC | 7.21 | 7.21
  • KRNL32NUC | 7.21EXT | 7.21EXT
  • KRNL32UC | 7.21 | 7.21
  • KRNL32UC | 7.21EXT | 7.21EXT
  • KRNL64NUC | 7.21 | 7.21
  • KRNL64NUC | 7.21EXT | 7.21EXT
  • KRNL64NUC | 7.42 | 7.42
  • KRNL64NUC | 7.22 | 7.22
  • KRNL64NUC | 7.22EXT | 7.22EXT
  • KRNL64UC | 7.21 | 7.21
  • KRNL64UC | 7.21EXT | 7.21EXT
  • KRNL64UC | 7.42 | 7.42
  • KRNL64UC | 7.22 | 7.22
  • KRNL64UC | 7.22EXT | 7.22EXT
  • KERNEL | 7.21 | 7.22
  • KERNEL | 7.42 | 7.42
  • KERNEL | 7.45 | 7.45
  • SAP KERNEL 7.21 32-BIT | SP614 | 000614
  • SAP KERNEL 7.21 32-BIT UNICODE | SP614 | 000614
  • SAP KERNEL 7.21 64-BIT | SP614 | 000614
  • SAP KERNEL 7.21 64-BIT UNICODE | SP614 | 000614
  • SAP KERNEL 7.21 EXT 32-BIT | SP614 | 000614
  • SAP KERNEL 7.21 EXT 32-BIT UC | SP614 | 000614
  • SAP KERNEL 7.21 EXT 64-BIT | SP614 | 000614
  • SAP KERNEL 7.21 EXT 64-BIT UC | SP614 | 000614
  • SAP KERNEL 7.22 EXT 64-BIT | | 000019
  • SAP KERNEL 7.22 EXT 64-BIT UC | | 000019
  • SAP KERNEL 7.42 64-BIT | | 000310
  • SAP KERNEL 7.42 64-BIT UNICODE | | 000310
  • SAP KERNEL 7.45 64-BIT UNICODE | | 000023

Affected component

    BC-CST-MS
    Message Service

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2223688

TAGS

#DoS
#denial-of-service
#Message-Server

How to detect over 4100 vulnerabilities in SAP Systems?

More to explorer

Initiating SAP Penetration Testing

►   Pentest, short for penetration testing, refers to a set of processes that simulate an attacker’s actions to identify security vulnerabilities. Companies