NVD

Id
64359  
Name
CVE-2006-5784  
Description
Unspecified vulnerability in enserver.exe in SAP Web Application Server 6.40 before patch 136 and 7.00 before patch 66 allows remote attackers to read arbitrary files via crafted data on a "3200+SYSNR" TCP port, as demonstrated by port 3201. NOTE: this issue can be leveraged by local users to access a named pipe as the SAPServiceJ2E user.  
Reject
 
CVSS Version
2  
CVSS Score
4.6  
Severity
Medium  
CVSS Base Score
4.6  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-11-07  
Modified Date
2011-04-07  
Seq
2006-5784  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
335851 64359 CVE-2006-5784 3291  View
335852 64359 CVE-2006-5784 1828  View
335853 64359 CVE-2006-5784 20061102 Multiple vulnerabilities in SAP Web Application Server 6.40 and7.00  View
335854 64359 CVE-2006-5784 20070208 Multiple vulnerabilities in SAP WebAS 6.40 and 7.00 (technicaldetails)  View
335855 64359 CVE-2006-5784 20877  View
335856 64359 CVE-2006-5784 1017628  View
335857 64359 CVE-2006-5784 ADV-2006-4318  View
335858 64359 CVE-2006-5784 sap-pipe-privilege-escalation(29982)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
61152 JVNDB-2006-003418 SAP Web Application Server の enserver.exe における任意のファイルを読まれる脆弱性 SAP Web Application Server の enserver.exe には、任意のファイルを読まれる脆弱性が存在します。 CVE-2006-5784 21886 CVE-2006-5784 64359 4.6 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-003418.html 2006-11-07 2012-12-20 View