CVE-2007-3624
published 2007-07-09CVE-2007-3624: Heap-based buffer overflow in the Message HTTP Server in SAP Message Server allows remote attackers to execute arbitrary code via a long string in the group…
PriorityP263critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
36.59%
98.3th percentile
Heap-based buffer overflow in the Message HTTP Server in SAP Message Server allows remote attackers to execute arbitrary code via a long string in the group parameter to /msgserver/html/group.
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation attempts by monitoring HTTP GET requests to /msgserver/html/group with an abnormally long 'group' query parameter (PoC uses ~498 bytes), targeting SAP Message Server port 8100. ↗
- →Alert on any HTTP request to the SAP Message Server path /msgserver/html/group from external/untrusted sources, as this endpoint is the attack vector for the heap overflow. ↗
- →Successful exploitation results in code execution with SYSTEM-level privileges; monitor SAP Message Server process for unexpected child processes or privilege escalation events. ↗
- →Failed exploitation attempts may manifest as denial-of-service / application crashes of the SAP Message Server; monitor for unexpected service restarts. ↗
- ·The SAP Message Server HTTP interface listens on port 8100 by default; restricting external access to this port is critical to reducing attack surface. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=118365794615827&w=2http://osvdb.org/38096http://secunia.com/advisories/25966http://securitytracker.com/id?1018340http://www.kb.cert.org/vuls/id/305657http://www.ngssoftware.com/advisories/critical-risk-vulnerability-in-sap-message-server-heap-overflow/http://www.securityfocus.com/bid/24765http://www.vupen.com/english/advisories/2007/2451https://exchange.xforce.ibmcloud.com/vulnerabilities/35279http://marc.info/?l=bugtraq&m=118365794615827&w=2http://osvdb.org/38096http://secunia.com/advisories/25966http://securitytracker.com/id?1018340http://www.kb.cert.org/vuls/id/305657http://www.ngssoftware.com/advisories/critical-risk-vulnerability-in-sap-message-server-heap-overflow/http://www.securityfocus.com/bid/24765http://www.vupen.com/english/advisories/2007/2451https://exchange.xforce.ibmcloud.com/vulnerabilities/35279
2007-07-09
Published