Multiple Stack-Based Buffer Overflows in SAP NetWeaver ABAP 7.x msg_server.exe

CVE-2012-4341 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) long parameter value, (2) crafted string size field, or (3) long Parameter Name string in a package with opcode 0x43 and sub opcode 0x4 to TCP port 3900.

Learn more about our Cis Benchmark Audit For Server Software.