Vulnerability discovered in SAP

Objectif Sécurité has discovered a vulnerability in the SAP Internet Transaction Server. This vulnerability has been communicated to SAP security and is patched with patch 20 that was released on 21st December

  1. More info can be found in SAP note 883908.