CVE-2007-3606

Currently unrated

Key Information:

Vendor: SAP
Status: EnjoySAP
Vendor: CVE Published:; 6 July 2007

Summary

Heap-based buffer overflow in the rfcguisink.rfcguisink.1 ActiveX control in the EnjoySAP SAP GUI, on systems using ASCII versions, allows remote attackers to execute arbitrary code via a long first argument to the LaunchGui function.

References

http://www.securityfocus.com/bid/24777

vdb-entryx_refsource_BID

http://osvdb.org/37689

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/24776

vdb-entryx_refsource_BID

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 6, 2007
Vulnerability Reserved
Jul 6, 2007