SAPlpd and SAPSprint Multiple Remote Vulnerabilities

SAPlpd and SAPSprint Multiple Remote Vulnerabilities

SAPlpd and SAPSprint are prone to multiple remote vulnerabilities. Very little information is currently available. We will update this BID as more information emerges.

Successfully exploiting these issues allows remote attackers to crash the service and potentially to execute arbitrary code. This may facilitate the complete compromise of affected computers.

The following versions are affected:

- SAPlpd as included with SAP GUI 7.10 (and earlier)
- Versions prior to SAPSprint 1018

This issue is reportedly documented in SAP Note 1138934.