The AGate component for SAP Internet Transaction Server (ITS) allows remote attackers to obtain sensitive information via a ~command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames.Referenceshttp://www.phenoelit.de/stuff/Phenoelit20c3.pdhttps://exchange.xforce.ibmcloud.com/vulnerabilities/15516
