Russian developers have discovered a critical vulnerability in a dangerous SAP Router
For the first time in the history of the world's largest information security conference Black Hat 2013 vulnerabilities discovered by Russian scientists, was nominated for best server-side vulnerabilities of software in 2013 . Critical vulnerability found by the researcher of Digital Security Gregory Nosenko, related to a buffer overflow in the SAP-router and allows any attacker from the Internet to get full access to the system and to internal servers SAP-systems of most organizations. This is the first and only such a level of criticality vulnerability has been identified in SAP-router.
This application has long been virtually unstoppable. Given the fact that the SAP-router uses a huge number of corporate clients and SAP is designed to gain remote access via the Internet to the internal SAP-systems, this vulnerability is particularly dangerous.
That is why the corporation SAP, having been informed of it, it promptly removed by releasing the appropriate update and timely notice to its customers in May 2013. Digital Security Company recommends to eliminate this vulnerability as soon as possible. Further details will be published in August in conjunction with the annual safety study SAP. Digital Security is an authorized service partner of SAP AG, as well as product developer ERPScan Security Monitoring Suite.
.jpg)
