CVE-2014-0984
SAP Router - Timing Attack Password Disclosure
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
The passwordCheck function in SAP Router 721 patch 117, 720 patch 411, 710 patch 029, and earlier terminates validation of a Route Permission Table entry password upon encountering the first incorrect character, which allows remote attackers to obtain passwords via a brute-force attack that relies on timing differences in responses to incorrect password guesses, aka a timing side-channel attack.
La función passwordCheck en SAP Router 721 patch 117, 720 patch 411, 710 patch 029, y anteriores termina la validación de una contraseña de entrada Route Permission Table al encontrarse con el primer carácter incorrecto. Esto permite que los atacantes remotos obtengan contraseñas mediante un ataque de fuerza bruta que depende de diferencias en la sincronización en las respuestas a adivinaciones incorrectas de contraseña. Esto también se conoce como ataque de sincronización de canal lateral.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-01-07 CVE Reserved
- 2014-04-16 CVE Published
- 2014-04-17 First Exploit
- 2024-08-06 CVE Updated
- 2024-11-02 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://scn.sap.com/docs/DOC-8218 | X_refsource_confirm | |
| http://www.coresecurity.com/advisories/sap-router-password-timing-attack | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/531854/100/0/threaded | Mailing List | |
| https://service.sap.com/sap/support/notes/1986895 | X_refsource_confirm |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/32919 | 2014-04-17 | |
| http://www.exploit-db.com/exploits/32919 | 2024-08-06 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sap Search vendor "Sap" | Router Search vendor "Sap" for product "Router" | 710 Search vendor "Sap" for product "Router" and version "710" | 029 |
Affected
| ||||||
| Sap Search vendor "Sap" | Router Search vendor "Sap" for product "Router" | 720 Search vendor "Sap" for product "Router" and version "720" | 411 |
Affected
| ||||||
| Sap Search vendor "Sap" | Router Search vendor "Sap" for product "Router" | 721 Search vendor "Sap" for product "Router" and version "721" | 117 |
Affected
| ||||||