SAP Internet Graphics Service (IGS) Remote Buffer Overflow

One-click Billing Fraud

Mobile
- Trending Scams Seen in the Android Market
- Malicious Mobile Apps Found in Server Hosted in Germany
- Fake Version of Temple Run Unearthed in the Android Market
- Search Monetization As a New Threat to the Mobile Platform
- One-Click Billing Fraud Scheme Through Android App Found
- 3 Truths about Mobile Applications
- How Big will the Android Malware Threat Be in 2012?
- 2011 in Review: Mobile Malware
- Checking the Legitimacy of Android Apps
- The Real Issues About Carrier IQ

February 2012
S	M	T	W	T	F	S
« Jan
	1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29

Malware Blog > SAP Internet Graphics Service (IGS) Remote Buffer Overflow

Jan25

SAP Internet Graphics Service (IGS) Remote Buffer Overflow

10:13 am (UTC-7) | by Jhoevine Capicio (Threats Analyst)

SAP is the largest business application and Enterprise Resource Planning (ERP) solution software provider in terms of revenue.

CYBSEC Security Systems has discovered a vulnerability in SAP IGS which when exploited can result in remote code execution with the privileges of the LocalSystem on Windows and SAP System Administrator Account on UNIX systems.

For more information about the vulnerability, read here.

SAP has already released a solution for this and customers that are affected should apply the patch as soon as possible. For more information about the patch read SAP Note 968423.