SAP BusinessObjects Mobile (MobileBIService) allows an unauthenticated attacker using specially-crafted payload to send requests to some endpoints that could overload the impacted servlet and render it unresponsive. This causes a denial of service situation and prevents legitimate users from accessing the impacted component, until it is explicitly restarted.
Available fix and Supported packages
- ENTERPRISE | 420 | 420
- SBOP BI PLATFORM SERVERS 4.2 | SP006 | 001100
- SBOP BI PLATFORM SERVERS 4.2 | SP007 | 000600
- SBOP BI PLATFORM SERVERS 4.2 | SP008 | 000000
Mobile BI Server
Exploit is not available.
For detailed information please contact the mail [email protected]