CVE-2009-4603
SAP Kernel 6.40, 7.00, 7.01, 7.10, 7.11, 7.20 - Denial of Service via Crafted Request
Title source: llmDescription
Unspecified vulnerability in sapstartsrv.exe in the SAP Kernel 6.40, 7.00, 7.01, 7.10, 7.11, and 7.20, as used in SAP NetWeaver 7.x and SAP Web Application Server 6.x and 7.x, allows remote attackers to cause a denial of service (Management Console shutdown) via a crafted request. NOTE: some of these details are obtained from third party information.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1023319
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37684
Various Sources x_refsource_misc
http://www.cybsec.com/vuln/CYBSEC_SAP_sapstartsrv_DoS.pdf
Various Sources x_refsource_misc
https://service.sap.com/sap/support/notes/1302231
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/37286
Scores
EPSS
0.0067
EPSS Percentile
71.6%
Details
Status
published
Products (6)
sap/sap_kernel
6.40
sap/sap_kernel
7.00
sap/sap_kernel
7.01
sap/sap_kernel
7.10
sap/sap_kernel
7.11
sap/sap_kernel
7.20
Published
Jan 12, 2010
Tracked Since
Feb 18, 2026