SAP HANA XS Engine Remote Log Spoofing Vulnerability

SAP HANA XS Engine Remote Log Spoofing Vulnerability

CVE-2016-1929 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:P/A:C

The XS engine in SAP HANA allows remote attackers to spoof log entries in trace files and consequently cause a denial of service (disk consumption and process crash) via a crafted HTTP request, related to an unspecified debug function, aka SAP Security Note 2241978.

Learn more about our Web Application Penetration Testing UK.