SAP DB Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities

info
discussion
exploit
solution
references

SAP DB Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities

SAP DB Web Server is prone to multiple buffer-overflow vulnerabilities because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer.

Successfully exploiting these issues will allow an attacker to execute arbitrary code with SYSTEM-level privileges. Failed exploit attempts will result in a denial-of-service condition.