WRITEUP #885
Chained to hit: Discovering new vectors to gain remote and root access in SAP Enterprise Software
RCESAPJava RMIJNDI InjectionSQL injectionDoSSSRFMissing authenticationHTTP header injectionPrivilege escalationInformation disclosureMemory corruption
by@lmkalg(Pablo Artuso)
Program
SAP
Published
Aug 9, 2023
Added to HackDex
Feb 6, 2024
Read Full Writeuphttps://i.blackhat.com/BH-US-23/Presentations/US-23-Genuer-chained-to-hit-discovering-new-vectors-to-gain-remote-and-root-access-in-sap-enterprise-software-wp.pdf