id: sap-router-info-leak info: name: SAPRouter - Routing information leak author: randomstr1ng severity: critical description: SAPRouter contains an information leakage vulnerability. reference: - https://securityforeveryone.com/tools/saprouter-routing-information-leakage-vulnerability-scanner - https://support.sap.com/en/tools/connectivity-tools/saprouter.html tags: network,sap metadata: max-request: 2 tcp: - inputs: - data: 00000022524f555445525f41444d002802000000000000000000000000000000000000000000 type: hex host: - "{{Hostname}}" - "{{Host}}:3299" read-size: 2048 matchers: - type: word words: - "Routtab" - "Working directory" - "SAProuter Connection Table" # Enhanced by mp on 2022/03/21