Vulnerabilities

CVE-2016-1929

by Fred · 20/01/2016

The XS engine in SAP HANA allows remote attackers to spoof log entries in trace files and consequently cause a denial of service (disk consumption and process crash) via a crafted HTTP request, related to an unspecified debug function, aka SAP Security Note 2241978.

Date published : 2016-01-20

http://seclists.org/fulldisclosure/2016/Apr/59

https://erpscan.io/advisories/erpscan-16-002-sap-hana-log-injection-and-no-size-restriction/

Similar

Tags: Cybersecurity Alert