Forgot your password?
typodupeerror
Security Businesses

Scores of Vulnerable SAP Deployments Uncovered 118

Posted by Unknown Lamer
from the double-your-paycheck dept.
mask.of.sanity writes "Hundreds of organizations have been detected running dangerously vulnerable versions of SAP that were more than seven years old and thousands more have placed their critical data at risk by exposing SAP applications to the public Internet. The new research found the SAP services were inadvertently made accessible thanks to a common misconception that SAP systems were not publicly-facing and remotely-accessible. The SAP services contained dangerous vulnerabilities which were since patched by the vendor but had not been applied."
This discussion has been archived. No new comments can be posted.

Scores of Vulnerable SAP Deployments Uncovered

Comments Filter:
  • by cusco (717999) <brian.bixby@gma i l .com> on Tuesday June 18, 2013 @12:49AM (#44036555)
    Or my particular headache, you run a 24x7x365 enterprise app distributed across 18 different countries on every continent but Antarctica. We're two years behind on updates because we can't take the system down for an hour.
  • by Rob_Bryerton (606093) on Tuesday June 18, 2013 @12:54AM (#44036573) Homepage
    ERP = Enterprise Resource Planning, a bad name for a general class of business software that does just about anything, from billing to shipping & receiving, warehouse automation, reporting, etc, etc. Basically a somewhat integrated suite of applications that tie all (or many) aspects of a business together, implementing business processes in software.

    Implementations typically run in timescales of years and millions of dollars, with teams of developers, DBAs, etc. The software suite is a canned solution that you then slightly (or vastly) modify to tailor to your business needs. ( My job as a systems & storage administrator at a major US-based snack food company has me managing the ~30 Linux servers that run our Oracle databases on the DB tier and Oracle EBusiness suite at the application tier, backed by all manner of storage arrays, NAS devices, FC SANs, load balancers, etc, etc. Fun stuff! )

    Think of it as Quicken, but on a very large scale.

All this wheeling and dealing around, why, it isn't for money, it's for fun. Money's just the way we keep score. -- Henry Tyroon

Working...