Limited Black Friday Offer:

SAP xMII 15.0 - Directory Traversal Vulnerability CVE-2016-2389 Scanner

There is a directory traversal vulnerability in SAP xMII 15.0, which allow remote attackers to read arbitrary files.

Short Info

Level

High

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

SAP xMII 15.0 - Directory Traversal Vulnerability CVE-2016-2389 Scanner Detail

Directory traversal vulnerability in the Manufacturing Integration and Intelligence (xMII) component in SAP NetWeaver 7.4 allows remote attackers to read arbitrary files via unspecified vectors, aka SAP Security Note 2230978.

http://packetstormsecurity.com/files/137046/SAP-MII-15.0-Directory-Traversal.html
http://seclists.org/fulldisclosure/2016/May/40
https://erpscan.io/advisories/erpscan-16-009-sap-xmii-directory-traversal-vulnerability/
https://erpscan.io/press-center/blog/sap-security-notes-february-2016-review/
https://www.exploit-db.com/exploits/39837/