Skip links
Arpine Maghakyan

Arpine Maghakyan

Security Researcher of RedRays.

Recording configuration data changes, SAP security note 1488770

Description

The logging of configuration data changes is not activated for the tables listed below. This does not present an actual security problem in the sense that it enables or prevents attacks. However, for security reasons, it is useful to log configuration data changes to meet audit requirements and to retain any information that may be required for reconstructing an attack.

Archiving:
SXMSARCITF
SXMSARCITF2 (higher than NetWeaver Release 6.40)

General Integration Engine configuration:
SXMSCONFPP
SXMSDCONF
SXMSINTERFACE
SXMSJOBS
SXMSMSGDEF

Message packaging:
SXMS_BCFG_MAST (higher than NetWeaver Release 6.40)
SXMS_BCFG_MATT (higher than NetWeaver Release 6.40)
SXMS_BCONF (higher than NetWeaver Release 6.40)
SXMS_BCONF_SPEC (higher than NetWeaver Release 6.40)

EOIO queue reorganization:
SXMS_EOIO_STAT (higher than NetWeaver Release 6.40)

User-defined search:
SXMS_LMS_EXTR (higher than NetWeaver Release 7.01) (higher than NetWeaver Release 7.10)
SXMS_NSPREFIX (higher than NetWeaver Release 7.01) (higher than NetWeaver Release 7.10)
SXMS_EXT_FIL (higher than NetWeaver Release 7.01) (higher than NetWeaver Release 7.10)

WS adapter:
SXMS_WS_SYSERR (NetWeaver Release 7.10 or higher)
SXMS_WS_SYSERSAP (NetWeaver Release 7.10 or higher)

This means that you can track activities in the content of these tables (for example, the update or deletion of existing entries).
Note that changes are recorded only if the profile parameter rec/client is set.

Available fix and Supported packages

  • SAP_BASIS | 640 | 640
  • SAP_BASIS | 700 | 702
  • SAP_BASIS | 710 | 711
  • SAP_BASIS | 730 | 730
  • SAP_BASIS 702 | SAPKB70205 |
  • SAP_BASIS 710 | SAPKB71011 |
  • SAP_BASIS 711 | SAPKB71106 |
  • SAP_BASIS 640 | SAPKB64027 |
  • SAP_BASIS 700 | SAPKB70023 |
  • SAP_BASIS 701 | SAPKB70108 |
  • SAP_BASIS 730 | SAPKB73001 |

Affected component

    BC-XI-IS-IEN
    Integration Engine

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/1488770

TAGS

#

More to explorer