CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 3CVE-2014-8316
https://notcve.org/view.php?id=CVE-2014-8316
XML External Entity (XXE) vulnerability in polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 allows remote attackers to read arbitrary files via the xmlParameter parameter in an explorationSpaceUpdate request. Vulnerabilidad XML External Entity (XXE) en polestar_xml.jsp en SAP BusinessObjects Explorer 14.0.5 build 882 permite a atacantes remotos leer archivos arbitrarios a través del parámetro xmlParameter en una petición explorationSpaceUpdate. • http://packetstormsecurity.com/files/128633/SAP-BusinessObjects-Explorer-14.0.5-XXE-Injection.html http://scn.sap.com/docs/DOC-55451 http://seclists.org/fulldisclosure/2014/Oct/50 http://www.csnc.ch/misc/files/advisories/CSNC-2013-018_SAP_BusinessObjects_Explorer_XXE.txt http://www.securityfocus.com/archive/1/533673/100/0/threaded http://www.securityfocus.com/bid/70384 https://exchange.xforce.ibmcloud.com/vulnerabilities/96933 https://service.sap.com/sap/support/notes/1908531 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-8315
https://notcve.org/view.php?id=CVE-2014-8315
polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 replies with different timing depending on if a connection can be made, which allows remote attackers to conduct port scanning attacks via a host name and port in the cms parameter. La aplicación polestar_xml.jsp en SAP BusinessObjects Explorer 14.0.5 build 882 responde con diferencias en el tiempo dependiendo si una conexión puede hacerse o no, lo que permite a atacantes remotos realizar ataques de escaneo de puertos a través del nombre del equipo y puerto en el parámetro cms. • http://seclists.org/fulldisclosure/2014/Oct/48 http://www.csnc.ch/misc/files/advisories/CSNC-2013-016_SAP_BusinessObjects_Explorer_Port-Scanning.txt http://www.securityfocus.com/archive/1/533672/100/0/threaded http://www.securityfocus.com/bid/70382 https://exchange.xforce.ibmcloud.com/vulnerabilities/96935 https://service.sap.com/sap/support/notes/1908562 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2014-8309
https://notcve.org/view.php?id=CVE-2014-8309
SAP BusinessObjects 4.0 and BusinessObjects XI (BOXI) R2 and 3.1 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to enumerate valid usernames via SecEnterprise authentication requests to the Session web service. SAP BusinessObjects 4.0 y BusinessObjects XI (BOXI) R2 y 3.1 generan mensajes de error tras un intento de inicio de sesión fallido con diferente tiempo de retraso dependiendo de si la cuenta de usuario existe o no, lo que permite a atacantes remotos enumerar nombres de usuario válidos a través de peticiones de autenticación SecEnterprise al servicio web Session. • http://scn.sap.com/docs/DOC-8218 http://seclists.org/fulldisclosure/2014/Oct/42 http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2014-029 http://www.securityfocus.com/archive/1/533647/100/0/threaded http://www.securityfocus.com/bid/70304 https://exchange.xforce.ibmcloud.com/vulnerabilities/96874 https://service.sap.com/sap/support/notes/2001109 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3134
https://notcve.org/view.php?id=CVE-2014-3134
Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la aplicación InfoView en SAP BusinessObjects permite a atacantes remotos inyectar script Web o HTML arbitrarios a través de vectores no especificados. • http://scn.sap.com/docs/DOC-8218 http://seclists.org/fulldisclosure/2014/Apr/303 http://www.onapsis.com/resources/get.php?resid=adv_onapsis-2014-010 http://www.securityfocus.com/bid/67110 https://service.sap.com/sap/support/notes/1931399 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 1CVE-2010-3980
https://notcve.org/view.php?id=CVE-2010-3980
Dswsbobje in SAP BusinessObjects Enterprise XI 3.2 does not limit the number of CUIDs that may be requested, which allows remote authenticated users to cause a denial of service via a large numCuids value in a GenerateCuids SOAPAction to the dswsbobje/services/biplatform URI. Dswsbobje en SAP BusinessObjects Enterprise XI v3.2 no limita el número de CUIDs que pueden ser solicitados, lo que permite a usuarios remotos autenticados provocar una denegación de servicio a través de valores numCuids extensos de una SOAPAction GenerateCuids de la URI dswsbobje/services/biplatform URI. • http://spl0it.org/files/talks/source_barcelona10/Hacking%20SAP%20BusinessObjects.pdf •