Remote Code Execution Vulnerability in SAP SAPgui by Simba MDrmSap ActiveX Control
CVE-2008-4387

Currently unrated

Key Information:

Vendor

SAP
Status
SAPgui
MdrmSAP Activex Control
Vendor
CVE Published:
10 November 2008

What is CVE-2008-4387?

A vulnerability exists in the Simba MDrmSap ActiveX control (mdrmsap.dll) used in SAP SAPgui, which can be exploited by remote attackers to execute arbitrary code. This exploitation occurs through the instantiation of the ActiveX control in Internet Explorer, presenting significant security risks to affected systems. Proper mitigation and updates are necessary to safeguard against potential attacks that leverage this vulnerability.

References

http://osvdb.org/49721
vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/32186
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/46440
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.