- The web services had metadata publishing enabled for ASMX web services, allowing WSDL metadata to be retrieved by unauthenticated clients.
- WSDL data may result useful to an attacker in determining the methods exposed by a service and constructing well-formed requests.
- Can this be considered as Product vulnerability?
SAP Financial Consolidation (FC) 10.1 web client.
web.config , bfc , vulnérabilité , thread , , KBA , EPM-BFC-TCL , Technical Components , Problem
About this pageThis is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).
Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.