Description
SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to cause a denial of service (crash) via a 0x53 LPD command, which causes the server to terminate.
Affected products
- SAP / sapgui7.10 – 7.10
- SAP / saplpd6.28
- SAP / sapsprint
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/28786
- MISChttp://www.securityfocus.com/archive/1/487575/100/0/threaded
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/0409
- MISChttp://www.securitytracker.com/id?1019300
- MISChttp://securityreason.com/securityalert/3619
- MISChttp://www.securityfocus.com/archive/1/487508/100/0/threaded
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/0438
- VENDOR_ADVISORYhttp://secunia.com/advisories/28811
- MISChttp://www.securityfocus.com/bid/27613