CVE-2016-5845

SAP SAPCAR does not check the return value of file operations when extracting files, which allows remote attackers to cause a denial of service (program crash) via an invalid file name in an archive file, aka SAP Security Note 2312905.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
VendorProductVersion
sapsapcar
-
𝑥
= Vulnerable software versions
References
http://packetstormsecurity.com/files/138284/SAP-CAR-Archive-Tool-Denial-Of-Service-Security-Bypass.html
http://seclists.org/fulldisclosure/2016/Aug/46
http://www.securityfocus.com/archive/1/539180/100/0/threaded
http://www.securityfocus.com/bid/92406
https://www.coresecurity.com/advisories/sap-car-multiple-vulnerabilities
https://www.exploit-db.com/exploits/40230/
https://www.onapsis.com/blog/denial-service-attacks-sap-security-notes-august-2016
http://packetstormsecurity.com/files/138284/SAP-CAR-Archive-Tool-Denial-Of-Service-Security-Bypass.html
http://seclists.org/fulldisclosure/2016/Aug/46
http://www.securityfocus.com/archive/1/539180/100/0/threaded
http://www.securityfocus.com/bid/92406
https://www.coresecurity.com/advisories/sap-car-multiple-vulnerabilities
https://www.exploit-db.com/exploits/40230/
https://www.onapsis.com/blog/denial-service-attacks-sap-security-notes-august-2016