Vulnerability in Sap Sap_web_application_server
CVE-2006-6010
SAP allows remote attackers to obtain potentially sensitive information such as operating system and SAP version via an RFC_SYSTEM_INFO RfcCallReceive request, a different vulnerability than CVE-2003-0747.
EPSS: 0.138 (96.0th percentile) — read the EPSS interpretation.
Affected products
- Sap Sap_web_application_server
- N/a — versions n/a
Public proof-of-concept exploits
References
- cve@mitre.org (x_refsource_SREASON, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
Frequently asked questions
- What is CVE-2006-6010?
- CVE-2006-6010 is a vulnerability in Sap Sap_web_application_server. Published 2006-11-21.
- Is CVE-2006-6010 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.