CVE-2007-3605

Currently unrated

Key Information:

Vendor: SAP
Status: EnjoySAP
Vendor: CVE Published:; 6 July 2007

Summary

Stack-based buffer overflow in the kweditcontrol.kwedit.1 ActiveX control in FrontEnd\SapGui\kwedit.dll in the EnjoySAP SAP GUI allows remote attackers to execute arbitrary code via a long argument to the PrepareToPostHTML function.

References

http://osvdb.org/37690

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/24772

vdb-entryx_refsource_BID

http://securityreason.com/securityalert/2873

third-party-advisoryx_refsource_SREASON

EPSS Score

96% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 6, 2007
Vulnerability Reserved
Jul 6, 2007