/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
The Tomcat application server that is used for Business Objects XIR2 and XI 3.1 allows for HTTP TRACE and TRACK methods, allowing an attacker to gather more information about applications and their users.
Read more...
Environment
XIR2
XI3.1
Tomcat 5.0.27
Tomcat 5.5.x
Product
SAP BusinessObjects Business Intelligence platform R2
Keywords
KBA , BI-BIP-DEP , Webapp Deployment, Networking, Vulnerabilities, Webservices , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)