CVE-2013-1593
First published: Thu Jan 23 2020(Updated: )
A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe module in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04 when sending a crafted SAP Message Server packet to TCP ports 36NN and/or 39NN.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP NetWeaver | =7.01-sr1 | |
| SAP NetWeaver | =7.02-sp06 | |
| SAP NetWeaver | =7.30-sp04 | |
| SAP NetWeaver | =2004s |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-1593?
The severity of CVE-2013-1593 is high, with a severity value of 7.5.
How does the Denial of Service vulnerability in CVE-2013-1593 work?
The Denial of Service vulnerability in CVE-2013-1593 occurs when a crafted SAP Message Server packet is sent to TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04.
Which versions of SAP NetWeaver are affected by CVE-2013-1593?
CVE-2013-1593 affects SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04.
How can I fix CVE-2013-1593?
To fix CVE-2013-1593, apply the necessary patches provided by SAP for the affected versions of SAP NetWeaver.
Where can I find more information about CVE-2013-1593?
You can find more information about CVE-2013-1593 at the following references: http://www.securityfocus.com/bid/57956, http://www.securitytracker.com/id/1028148, and https://exchange.xforce.ibmcloud.com/vulnerabilities/82065.
- collector/nvd-index
- vendor/sap
- product/netweaver
- canonical/sap netweaver