Follow us on Twitter
Follow us on FacebookSAP releases patches
@ 2017/03/17The software maker which makes esoteric expensive business programmes which no one is really sure what they do, has patched vulnerabilities in its latest HANA software.
The holes had a high risk of giving hackers control over databases and business applications used to run big multinational firms.
Vulnerabilities in big business software are more lucrative to attackers as these tools store data and run transactions. The flaws were “zero day” vulnerabilities and were the most critical ever found in HANA. For those who came in late, HANA runs SAP’s latest database, cloud and other more traditional business apps.
The holes were spotted by the insecurity outfit Onapsis which said that the vulnerabilities lay in a HANA component known as “User Self Service” (USS) which would allow malicious insiders or remote attackers to fully compromise vulnerable systems, without so much as valid usernames and passwords.
The holes had a high risk of giving hackers control over databases and business applications used to run big multinational firms.
Vulnerabilities in big business software are more lucrative to attackers as these tools store data and run transactions. The flaws were “zero day” vulnerabilities and were the most critical ever found in HANA. For those who came in late, HANA runs SAP’s latest database, cloud and other more traditional business apps.
The holes were spotted by the insecurity outfit Onapsis which said that the vulnerabilities lay in a HANA component known as “User Self Service” (USS) which would allow malicious insiders or remote attackers to fully compromise vulnerable systems, without so much as valid usernames and passwords.
