[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Onapsis Security Advisory 2010-004] SAP J2EE Authentication Phishing Vector

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: [Onapsis Security Advisory 2010-004] SAP J2EE Authentication Phishing Vector
From: david.durham@xxxxxxxxxxxxxxxx
Date: 19 Feb 2010 15:06:05 -0000

The communication you have posted appears to be inconsistent with the note 
1175239 SAP has issued.

If I've read the SAP note correctly:
SAP JAVA CORE 7.00 < SP22 is affected

According to your posting:
SAP JAVA CORE 7.00 < SP02 is affected

Prev by Date: [SECURITY] [DSA-2001-1] New php5 packages fix multiple vulnerabilities
Next by Date: [SECURITY] [DSA-2002-1] New polipo packages fix denial of service
Previous by thread: [Onapsis Security Advisory 2010-004] SAP J2EE Authentication Phishing Vector
Next by thread: [Onapsis Security Advisory 2010-003] SAP WebDynpro Runtime XSS/CSS Injection
Index(es):
- Date
- Thread