Scores of Vulnerable SAP Deployments Uncovered

← Back to Stories (view on slashdot.org)

Scores of Vulnerable SAP Deployments Uncovered

Posted by Unknown on Monday June 17, 2013 @02:02PM from the double-your-paycheck dept.

mask.of.sanity writes "Hundreds of organizations have been detected running dangerously vulnerable versions of SAP that were more than seven years old and thousands more have placed their critical data at risk by exposing SAP applications to the public Internet. The new research found the SAP services were inadvertently made accessible thanks to a common misconception that SAP systems were not publicly-facing and remotely-accessible. The SAP services contained dangerous vulnerabilities which were since patched by the vendor but had not been applied."

6 of 118 comments (clear)

Min score:

Reason:

Sort:

Color me surprised... by Anonymous Coward · 2013-06-17 14:13 · Score: 4, Funny

I once heard SAP described as "The Germany's way of getting back at us for winning the war." I've spent my fair share of time beating SAP abomination into submission. I'll be glad if this makes organizations think twice before allowing this atrocity to sink its teeth into their business processes.
1. Re:Color me surprised... by phantomfive · 2013-06-17 15:57 · Score: 3, Funny
  
  I'm more interested by the fact that you think using angry words at an AC will accomplish anything......
  
  --
  "First they came for the slanderers and i said nothing."
So.... by wbr1 · 2013-06-17 14:31 · Score: 4, Funny

Their IT departments are full of saps?
ba-dum-dam
Thanks, I'll be here all night.

--
Silence is a state of mime.
Re:I can explain by Flere+Imsaho · 2013-06-17 15:01 · Score: 5, Funny

SAP - Send Another Payment, or, Sucks All Profit

--
It gripped her hand gently. 'Regret is for humans,' it said.
Re:SAP - I know what that means by PolygamousRanchKid+ · 2013-06-17 15:10 · Score: 3, Funny

Scheiß aufs Privatleben!

--
Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
Re:I can explain by Anonymous Coward · 2013-06-17 15:12 · Score: 5, Funny

Chuckle. I used to work at a place that gave all their database stuff to a SAP outside vendor, all their letters and form documents.
One of the people who did interviewing later wanted one of his standard letters -- emailed as a PDF routinely -- to have yellow hilighting applied to an important sentence. He asked the vendor to make that change.
The vendor came back with a proposed work order for six hours of programmer time at $200/hour to make that change.
(My coworker printed that page, got a hilighter, hilighted the text, scanned it, and emailed that image thereafter.)