[ERPSCAN-14-008] SAP NetWeaver – Unauthorized logon page

DSECRG Advisories

Application: SAP NetWeaver
Versions Affected: 7.00 (7.0014.20050509144048.0000)
Vendor URL: http://www.sap.com
Bugs: Missing Authorization Check
Exploits: NO
Reported: 20.08.2010
Vendor response: 23.08.2010
Date of Public Advisory: 12.02.2014
Reference: SAP Security Note 1860923
Author: Alexander Polyakov (ERPScan)

Unauthorized access to tc/workflowmodeler. This page can be used for remote scanning of internal servers and open ports. Depending on the reply from server, the attacker can find live hosts, open ports, bruteforce accounts, or simply lock them by many unsuccessful attempts.

Business Risk
An attacker can use a Missing Authorization Check vulnerability for access to a service without any authorization and use service functionality that has restricted access. This can lead to information disclosure, privilege escalation, and other attacks.