Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The TRUSTED_SYSTEM_SECURITY function in the SAP RFC Library 6.40 and 7.00 before 20061211 allows remote attackers to verify the existence of users and groups on systems and domains via unspecified vectors, a different vulnerability than CVE-2006-6010. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP RFC库Trusted_System_Security函数信息泄露漏洞
Vulnerability Description
SAP的RFC库是SAP软件中所广泛使用的组件,允许用户从外部应用程序调用SAP系统中的任意RFC函数。 SAP的RFC库默认所安装的Trusted_System_Security函数可以被用户获得Windows域的指纹,但其部署方式允许攻击者远程识别出外部服务器的system/domain/trusted域中是否存在用户帐号或用户组。
CVSS Information
N/A
Vulnerability Type
N/A