Vulnerability Description
A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packet to TCP ports 36NN and/or 39NN.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sap | Netweaver | 7.01 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/57956Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1028148Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/82065Third Party AdvisoryVDB Entry
- https://packetstormsecurity.com/files/cve/CVE-2013-1593Third Party AdvisoryVDB Entry
- https://www.coresecurity.com/content/SAP-netweaver-msg-srv-multiple-vulnerabilitExploitThird Party Advisory
- http://www.securityfocus.com/bid/57956Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1028148Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/82065Third Party AdvisoryVDB Entry
- https://packetstormsecurity.com/files/cve/CVE-2013-1593Third Party AdvisoryVDB Entry
- https://www.coresecurity.com/content/SAP-netweaver-msg-srv-multiple-vulnerabilitExploitThird Party Advisory
FAQ
What is CVE-2013-1593?
CVE-2013-1593 is a vulnerability with a CVSS score of 7.5 (HIGH). A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packe...
How severe is CVE-2013-1593?
CVE-2013-1593 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1593?
Check the references section above for vendor advisories and patch information. Affected products include: Sap Netweaver.