Intrusion Prevention

SAP.Internet.Transaction.Server.XSS

Description

It indicates an attacker attempted a Cross-Site Scripting (XSS) attack against Sap Internet Transaction Server. The SAP Internet Transaction server is vulnerable to multiple Cross-Site Scripting attacks via the service paramater in the wgate.dll.

Affected Products

SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011

Impact

Compromise of the affected system.

Recommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

CVE References

CVE-2003-0749