Buffer overflow in the XS engine (hdbxsengine) in SAP HANA allows remote attackers to cause a denial of service or execute arbitrary code via a crafted HTTP request, related to JSON, aka SAP Security Note 2241978.
https://erpscan.io/press-center/blog/sap-security-notes-january-2016-review/
https://erpscan.io/advisories/erpscan-16-005-sap-hana-hdbxsengine-json-dos/
http://www.securityfocus.com/archive/1/538212/100/0/threaded