Five-year-old SAP Vulnerability Haunts Global Businesses

Security researchers are seeing evidence that up to 36 global organizations have been hacked via exploits against a vulnerability in SAP Business Applications that was patched more than five years ago.

The vulnerability, patched by SAP in 2010, exists in the built-in functionality in SAP NetWeaver Application Server Java systems (SAP Java platforms).