Internal Server Error: Exploiting Inter-Process Communication in SAP's HTTP Server

More than 400,000 organizations, including 90% of Fortune 500 companies, rely on SAP's software to keep their business up and running. At the core of every SAP deployment is the Internet Communication Manager (ICM), the piece of software in charge of handling all HTTP requests and responses. This talk will demonstrate how to leverage two memory corruption vulnerabilities found in SAP's proprietary HTTP Server, using high-level protocol exploitation techniques. Both techniques, CVE-2022-22536 and CVE-2022-22532, were remotely exploitable and could be used by unauthenticated attackers to completely compromise any SAP installation on the planet. Presented by Martin Doyhenard Full Abstract & Presentation Materials: https://www.blackhat.com/us-22/briefings/schedule/#internal-server-error-exploiting-inter-process-communication-in-saps-http-server-27189