Symptom
A vulnerability scan identified issues with MYSAPSSO2 cookie, such as
- Can be decoded easily with base64
- Contains user and system information
- Once captured it can be used to log back in.
Read more...
Environment
Product version: SAP NetWeaver 7.5
System managed by: onPrem
Product
SAP NetWeaver 7.5
Keywords
scan, cookie, decode, username, vulnerability , KBA , BC-JAS-SEC-LGN , Logon, SSO , BC-SEC-LGN , Authentication , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.