Threat and Vulnerability Management

SAP HANA User Self Service Vulnerabilities

Provided by Onapsis

Category Threat and Vulnerability Management

Type White Paper

Length 3

Publish Date March 13 2017

Date posted May 10 2017

Overview

As part of our commitment to protect our customers’ business critical applications and key business data, the Onapsis Research Labs continuously analyze threats and attack vectors affecting SAP applications. As a result of these proactive efforts, we have identified multiple vulnerabilities that could be leveraged by attackers to perform two critical attacks in SAP HANA, depending on the active services. These attacks consist of a full system compromise without any type of previous authentication.

While SAP has provided a patch for these vulnerabilities, we understand that organizations may not be able to immediately implement, or take a system offline to configure this patch. In the meantime, the following document serves as a work around to mitigate or reduce risk to your SAP HANA environment.

Recommended for You

silhouette

Which Enterprise Password Managers work the best?

IDG Connect tackles the tech stories that matter to you

kathryn-cave

The IoT “time bomb” report: 49 security experts share their views

Kathryn Cave looks at the big trends in global tech

phil-muncaster

China’s Cybersecurity Law: Game over for foreign firms?

Phil Muncaster reports on China and beyond

Most Recent Comments

Our Case Studies

IDG Connect delivers full creative solutions to meet all your demand generatlon needs. These cover the full scope of options, from customized content and lead delivery through to fully integrated campaigns.

images

Our Marketing Research

Our in-house analyst and editorial team create a range of insights for the global marketing community. These look at IT buying preferences, the latest soclal media trends and other zeitgeist topics.

images

Poll

Should companies have Bitcoins on hand in preparation for a Ransomware attack?