Close

HAVE QUESTIONS?

A partner account manager can help. Contact us today.

 Subscribe me to your mailing list

[ERPSCAN-13-020] SAP NetWeaver SHSTI_UPLOAD_XML – XXE

Application: SAP NetWeaver AS ABAP
Versions Affected: SAP NetWeaver AS ABAP 7.31, probably others
Vendor URL: http://www.sap.com
Bugs: XML External Entity
Exploits: YES
Reported: 09.07.2013
Vendor response: 10.07.2013
Date of Public Advisory: 30.10.2013
Reference: SAP Security Note 1890819
CVSS: AV:N/AC:L/AU:S/C:N/I:N/A:P 5.0
Author: Nikolay Mescherin (ERPScan)

Description
The function SHSTI_UPLOAD_XML has an XXE vulnerability.

Business Risk
It is possible for attackers to send any packets to any port of any system including localhost. It means that it is possible, for example, to send any administrative command to Gateway or Message Server because the source of the packet will be localhost, and there is no restrictions for localhost. Another example is an attack on other interfaces.

Defense

To prevent this issue as well as a plethora of other vulnerabilities that may affect your systems, ERPScan provides the following services: