Buffer Overflow Vulnerability in SAP RFC Library 6.40 and 7.00
CVE-2007-1915

Currently unrated

Key Information:

Vendor: SAP
Status: Rfc Library
Vendor: CVE Published:; 10 April 2007

What is CVE-2007-1915?

A buffer overflow vulnerability exists in the RFC_START_PROGRAM function of the SAP RFC Library versions 6.40 and 7.00 prior to the December 11, 2006 update. This vulnerability allows remote attackers to execute arbitrary code by exploiting unspecified vectors, potentially compromising the integrity and security of affected systems. Initial disclosures regarding this vulnerability were vague, necessitating further clarification post the grace period.

References

http://securityreason.com/securityalert/2538

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/bid/23313

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/464678/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Apr 10, 2007
Vulnerability Reserved
Apr 10, 2007