SAP Internet Transaction Server (ITS) 6.20

CPE Details

SAP Internet Transaction Server (ITS) 6.20
sap
internet_transaction_server
6.20
2018-06-25
16h24 +00:00
2021-07-27
23h09 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sap:internet_transaction_server:6.20:*:*:*:*:*:*:*

Informations

Vendor

sap

Product

internet_transaction_server

Version

6.20

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-11415 2018-05-24 17h00 +00:00 SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site Scripting (XSS) via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product.
6.1
Medium
CVE-2003-1036 2004-03-16 04h00 +00:00 Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.
7.5
CVE-2003-1037 2004-03-16 04h00 +00:00 Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary code via a high "trace level."
7.5
CVE-2003-1038 2004-03-16 04h00 +00:00 The AGate component for SAP Internet Transaction Server (ITS) allows remote attackers to obtain sensitive information via a ~command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames.
5