CVE-2001-0366
SAP R/3 Web Application Server Demo <1.5 - Local Privilege Escalation
Title source: llmDescription
saposcol in SAP R/3 Web Application Server Demo before 1.5 trusts the PATH environmental variable to find and execute the expand program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse expand program.
References (4)
Core 4
Core References
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2662
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6487
Exploit, Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/180498
Various Sources x_refsource_confirm
ftp://ftp.sap.com/pub/linuxlab/saptools/README.saposcol
Scores
EPSS
0.0005
EPSS Percentile
14.6%
Details
Status
published
Products (5)
sap/sap_r_3_web_application_server_demo
< 1.5
sap/saposcol
1.0
sap/saposcol
1.1
sap/saposcol
1.2
sap/saposcol
1.3
Published
Jun 27, 2001
Tracked Since
Feb 18, 2026