Back to search
CVE-2016-9832
Published: Dec 9, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
PricewaterhouseCoopers (PwC) ACE-ABAP 8.10.304 for SAP Security allows remote authenticated users to conduct ABAP injection attacks and execute arbitrary code via (1) SAPGUI or (2) Internet Communication Framework (ICF) over HTTP or HTTPS, as demonstrated by WEBGUI or Report.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.securityfocus.com/archive/1/539883/30/0/threaded
x_refsource_MISC
94733
vdb-entry
x_refsource_BID
20161209 [ESNC-2041217] Critical Security Vulnerability in PwC ACE Software for SAP Security
mailing-list
x_refsource_FULLDISC
20161207 [ESNC-2041217] Critical Security Vulnerability in PwC ACE Software for SAP Security
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now