SAP Netwaver CVE-2015-7241 XML External Entity Injection vulnerability

SAP Netwaver is prone to XML External Entity injection vulnerability.

Successfully exploiting this issue may allow an attacker to gain unauthorized access and perform unauthorized actions; this may aid in further attacks.

Versions prior to SAP Netwaver 7.01 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus