PT-2008-5635 · Sap+1 · Sap Sapgui+1
Will Dormann
·
Published
2008-11-10
·
Updated
2017-08-08
·
CVE-2008-4387
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
SAP SAPgui (affected versions not specified)
Description:
The issue concerns an unspecified vulnerability in the Simba MDrmSap ActiveX control within the mdrmsap.dll component of SAP SAPgui. This vulnerability potentially allows remote attackers to execute arbitrary code through unknown vectors, specifically when the control is instantiated by Internet Explorer.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Internet Explorer
Sap Sapgui