Problem Note 61801: SASĀ® Metadata Server contains a denial of service vulnerability
 |  |  |  |  |
Severity: Medium
Description: SAS Metadata Server is vulnerable to an attack whereby a user might request that the metadata server execute code that might cause denial of service.
Potential Impact: Users connecting to SAS Metadata Server might knowingly or unknowingly execute malicious code.
Click the Hot Fix tab in this note to access the hot fix for this issue.
Operating System and Release Information
| Product Family | Product | System | Product Release | SAS Release | ||
| Reported | Fixed* | Reported | Fixed* | |||
| SAS System | SAS Metadata Server | Solaris for x64 | 9.4 | |||
| Linux for x64 | 9.4 | |||||
| HP-UX IPF | 9.4 | |||||
| 64-bit Enabled Solaris | 9.4 | |||||
| 64-bit Enabled AIX | 9.4 | |||||
A fix for this issue for Threaded Kernel Metadata Component 9.4_M5 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/C1D.html#61801A fix for this issue for Threaded Kernel Metadata Component 9.4_M4 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/B4S.html#61801A fix for this issue for Base SAS 9.4_M3 is available at:
https://tshf.sas.com/techsup/download/hotfix/HF2/V01.html#61801| Type: | Problem Note |
| Priority: | high |
| Date Modified: | 2018-03-08 14:34:03 |
| Date Created: | 2018-02-01 14:10:32 |