The SAP CRM Internet Sales module allows remote attackers to execute arbitrary commands via unspecified vectors.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8661
Reference (s):
- http://blog.onapsis.com/analyzing-sap-security-notes-october-2014-edition/
- http://service.sap.com/sap/support/notes/0002043404