SAP released its monthly critical patch update for September 2011 which closes about 70 vulnerabilities in SAP products. 17 of those vulnerabilities were found by different experts. Traditionally ERPScan researchers Alexander Polyakov, Alexey Tuyrin and Evgeniy Neyolov who found 3 vulnerabilities are among them.
As usual, SAP published acknowledgements for found vulnerabilities to security researchers from ERPScan on their acknowledgement page.
The detailed list of the corrected vulnerabilities is below:
- The most critical vulnerability is bypassing authentication and authorization mechanisms in one of the web applications. The update is available is SAP Security Note 1567389. The criticality according to CVSS is 6.4.
- XSS vulnerability. The update is available in SAP Security Note 1591749. The criticality according to CVSS is 4.3.
- The SMB Relay vulnerability in one of reports. The update is available in SAP Security Note 1591146. The criticality according to CVSS is 3.4.
It is highly recommended to patch all those issues to prevent business risks. Solutions for those issues are available in SAP Security Notes: 1567389, 1591749, 1591146 Advisories for those issues with technical details will be available in 3 months on erpscan.com Exploits will be available soon in ERPScan Security Scanner – innovative SAP vulnerability assessment solution and ERPScan SaaS.