Arpine Maghakyan

Arpine Maghakyan

Security Researcher of RedRays.

July 19, 2010
12:58 pm

Unauthorized modification of displayed content in BSP, SAP security note 1422273

Description

The execution of a BSP application can be misused by a malicious user to obtain authentication information of other legitimate users.

Available fix and Supported packages

SAP_BASIS | 640 | 640
SAP_BASIS | 700 | 702
SAP_BASIS | 710 | 720
SAP_BASIS | 72L | 72L
SAP_BASIS 710 | SAPKB71010 |
SAP_BASIS 711 | SAPKB71105 |
SAP_BASIS 640 | SAPKB64026 |
SAP_BASIS 720 | SAPKB72003 |
SAP_BASIS 702 | SAPKB70203 |
SAP_BASIS 700 | SAPKB70022 |
SAP_BASIS 701 | SAPKB70107 |

Affected component

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected].

URL

https://launchpad.support.sap.com/#/notes/1422273

TAGS

#Security-update
#cross-site-scripting
#cross-domain-attack
#BSP
#Business-Server-Pages
#XSS
#CSS

More to explorer

Exploring P4 Protocol: Usage, Implementation, and CVE-2021-37535

May 24, 2023

Introduction The P4 protocol is important in Java remote communication, mainly with Java Naming and Directory Interface (JNDI) and Java Remote Method

AI-powered Password Testing for ABAP stack

May 12, 2023

Greetings, I am glad to inform you about a significant development in the RedRays Security Platform for the ABAP stack. We have created a

SAP Security Patch Day – May 2023

May 9, 2023

SAP released 27 new and updated security patches on May 9, 2023. This includes three HotNews Notes and nine High Priority Notes.

Time to give back, RedRays

RedRays Offers Support to Startups Listing on SAP Store

February 26, 2023

RedRays is a startup that was founded in January 2021. Throughout our journey, we have been fortunate to receive support and guidance