A partner account manager can help. Contact us today.

[ERPSCAN-16-028] SAP Adaptive Server Enterprise – DoS vulnerability

Application: SAP Adaptive Server Enterprise
Versions Affected: SAP Adaptive Server Enterprise 16
Vendor URL: SAP
Bug: Denial of Service
Reported: 01.02.2016
Vendor response: 02.02.2016
Date of Public Advisory: 12.07.2016
Reference: SAP Security Note 2330839
Author: Vahgan Vardanyan (ERPScan)


Anonymous attacker can send a special request to the SAP Adaptive Server Enterprise and crash the server.

Business risk

An attacker can use Denial of service vulnerability for terminating a process of a vulnerable component. For this time nobody can use this service, which negatively influences on business processes, system downtime and, as a result, business reputation.