CVE-2007-3624

Currently unrated

Key Information:

Vendor: SAP
Status: SAP Message Server
Vendor: CVE Published:; 9 July 2007

Summary

Heap-based buffer overflow in the Message HTTP Server in SAP Message Server allows remote attackers to execute arbitrary code via a long string in the group parameter to /msgserver/html/group.

References

http://securitytracker.com/id?1018340

vdb-entryx_refsource_SECTRACK

http://marc.info/?l=bugtraq&m=118365794615827&w=2

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/25966

third-party-advisoryx_refsource_SECUNIA

EPSS Score

41% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 9, 2007
Vulnerability Reserved
Jul 9, 2007