Intrusion Prevention



This indicates an attempt to exploit a heap overflow vulnerability in SAP message server.
The vulnerability is caused by an input validation error that occurs in "/msgserver/html/group" while handling the group parameter. It allows remote attackers to execute arbitrary code via a a long string in the group parameter.

Affected Products

SAP Message Server


System Compromise: remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the following web site:

CVE References