This series of articles will continue our EAS-SEC Guide for secure development that is aimed to unveil all the most important types of vulnerabilities in ABAP applications. At first, we would like to shed a light on SAP SQL Injections.
At the moment, SQL injection is one of the most common injection vulnerability in general and in ABAP as well.
In the first part, we discussed the top 9 areas to be taken for security assessment of the PeopleSoft systems. Eventually, we covered patch management flaws, the first critical category in our list. As you may have guessed, today we will take a closer look at the next item – PeopleSoft default accounts.
On 11 of April 2017, SAP released its monthly set of SAP Security Notes consisting of 27 patches.