SAP NetWeaver 'msg_server.exe' Remote Code Execution and Denial of Service Vulnerabilities

SAP NetWeaver is prone to a remote code-execution vulnerability and a denial-of-service vulnerability.

Successfully exploiting these issues may allow an attacker to execute arbitrary code with the privileges of the user running the affected application or cause denial-of-service conditions.

The following products are affected:

SAP Netweaver 2004s
SAP Netweaver 7.01 SR1
SAP Netweaver 7.02 SP06
SAP Netweaver 7.30 SP04


Privacy Statement
Copyright 2010, SecurityFocus