[ERPSCAN-11-023] SAP NetWeaver SLD – Information Disclosure
Application: SAP NetWeaver
Versions Affected: SAP NetWeaver
Vendor URL: http://www.sap.com
Bugs: Information disclose
Vendor response: 10.06.2010
Date of Public Advisory: 17.06.2011
Information disclosure vulnerability was found in SAP NetWeaver SLD which can help attacker to find information about installed version and patch for NetWeaver.
Vulnerability can lead to disclosure of the information on the system without authentication and can help an attacker to penetrate the system. An attacker can use the information from the given service for the subsequent attacks which will lead to illegal access to the business-critical information.