Unrated severityNVD Advisory· Published Apr 15, 2004· Updated Apr 16, 2026

CVE-2003-1036

Description

Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.

Affected products

SAP/Internet Transaction Server
cpe:2.3:a:sap:internet_transaction_server:*:*:*:*:*:*:*:*
Range: <=4.6_pl463

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.phenoelit.de/stuff/Phenoelit20c3.pdnvd
exchange.xforce.ibmcloud.com/vulnerabilities/14186nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000