CVE-2006-5784

SAP Web Application Server <7.00 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in enserver.exe in SAP Web Application Server 6.40 before patch 136 and 7.00 before patch 66 allows remote attackers to read arbitrary files via crafted data on a "3200+SYSNR" TCP port, as demonstrated by port 3201. NOTE: this issue can be leveraged by local users to access a named pipe as the SAPServiceJ2E user.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nicob · perlremotewindows

https://www.exploit-db.com/exploits/3291

View Code ZIP pw:eip

References (9)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/29982

[Third Party Advisory] http://securityreason.com/securityalert/1828

[Vendor Advisory] http://www.vupen.com/english/advisories/2006/4318

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/20877

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/459499/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/450394/100/0/threaded

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3291

[Patch, Vendor Advisory] http://secunia.com/advisories/22677

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1017628

Scores

EPSS 0.0454

EPSS Percentile 89.2%

Details

Status published

Products (2)

sap/sap_web_application_server 6.40

sap/sap_web_application_server 7.00

Published Nov 07, 2006

Tracked Since Feb 18, 2026