SAP : Security vulnerabilities, CVEs published in March 2008

Copy

CVE-2008-0307

Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption.

Max CVSS

9.3

EPSS Score

6.06%

Published

2008-03-11

Updated

2017-08-08

CVE-2008-0306

sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.

Max CVSS

6.9

EPSS Score

0.04%

Published

2008-03-11

Updated

2017-08-08

CVE-2007-6254

Stack-based buffer overflow in the SAP Business Objects BusinessObjects RptViewerAX ActiveX control in RptViewerAX.dll in Business Objects 6.5 before CHF74 allows remote attackers to execute arbitrary code via unspecified vectors.

Max CVSS

9.3

EPSS Score

3.28%

Published

2008-03-20

Updated

2017-08-08

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!