Secure configuration of the message server, SAP security note 1421005

Description

Malicious clients can log on to the message server of your SAP system and assume the identity of an application server.
You want to configure the message server in such a way that external clients cannot pose any risks to the operation of the system.

Available fix and Supported packages

SAP KERNEL 4.6D_EX2 32-BIT | SP2508 | 002508
SAP KERNEL 4.6D_EX2 64-BIT | SP2508 | 002508
SAP KERNEL 4.6D_EXT 32-BIT | SP2508 | 002508
SAP KERNEL 4.6D_EXT 64-BIT | SP2508 | 002508
SAP KERNEL 6.40 32-BIT | SP316 | 000316
SAP KERNEL 6.40 32-BIT UNICODE | SP316 | 000316
SAP KERNEL 6.40 64-BIT | SP316 | 000316
SAP KERNEL 6.40 64-BIT UNICODE | SP316 | 000316
SAP KERNEL 6.40_EX2 32-BIT | SP316 | 000316
SAP KERNEL 6.40_EX2 32-BIT UC | SP316 | 000316
SAP KERNEL 6.40_EX2 64-BIT | SP316 | 000316
SAP KERNEL 6.40_EX2 64-BIT UC | SP316 | 000316

Affected component

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected].

URL

https://launchpad.support.sap.com/#/notes/1421005

Arpine Maghakyan

Secure configuration of the message server, SAP security note 1421005

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#rdisp/msservrdisp/msserv_internal

More to explorer

Press release: RedRays discovered major cybersecurity leak affects 4800 domains

Urgent Security Notice: RedRays Discloses Major Data Breach Affecting SAP Customers

[CVE-2021-33690] Server Side Request Forgery vulnerability in SAP NetWeaver Development Infrastructure

Exploring P4 Protocol: Usage, Implementation, and CVE-2021-37535