VYPR
Unrated severityNVD Advisory· Published Apr 15, 2004· Updated Jun 16, 2026

CVE-2003-1036

CVE-2003-1036

Description

Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.

Affected products

2
  • cpe:2.3:a:sap:internet_transaction_server:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sap:internet_transaction_server:*:*:*:*:*:*:*:*range: <=4.6_pl463
    • (no CPE)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.