CVE-2015-5067
N/A
N/A
Summary
The (1) Cross-System Tools and (2) Data Transfer Workbench in SAP NetWeaver have hardcoded credentials, which allows remote attackers to obtain access via unspecified vectors, aka SAP Security Notes 2059659 and 2057982.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://erpscan.io/advisories/erpscan-15-015-sap-netweaver-hardcoded-credentials/
- https://erpscan.io/advisories/erpscan-15-016-sap-netweaver-hardcoded-credentials/
- http://scn.sap.com/community/security/blog/2015/06/11/sap-security-notes-june-2015
- http://packetstormsecurity.com/files/133516/SAP-NetWeaver-AS-LSCT1I13-ABAP-Hardcoded-Credentials.html
- http://packetstormsecurity.com/files/133515/SAP-NetWeaver-AS-FKCDBFTRACE-ABAP-Hardcoded-Credentials.html
- http://www.securityfocus.com/bid/75165
References
- https://erpscan.io/advisories/erpscan-15-015-sap-netweaver-hardcoded-credentials/
- https://erpscan.io/advisories/erpscan-15-016-sap-netweaver-hardcoded-credentials/
- http://scn.sap.com/community/security/blog/2015/06/11/sap-security-notes-june-2015
- http://packetstormsecurity.com/files/133516/SAP-NetWeaver-AS-LSCT1I13-ABAP-Hardcoded-Credentials.html
- http://packetstormsecurity.com/files/133515/SAP-NetWeaver-AS-FKCDBFTRACE-ABAP-Hardcoded-Credentials.html
- http://www.securityfocus.com/bid/75165
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.