SAP : Security vulnerabilities, CVEs published in 2007 with exploits

Copy

CVE-2007-3605

Public exploit

Stack-based buffer overflow in the kweditcontrol.kwedit.1 ActiveX control in FrontEnd\SapGui\kwedit.dll in the EnjoySAP SAP GUI allows remote attackers to execute arbitrary code via a long argument to the PrepareToPostHTML function.

Max CVSS

7.6

EPSS Score

95.19%

Published

2007-07-06

Updated

2018-10-15

CVE-2007-3614

Public exploit

Multiple stack-based buffer overflows in waHTTP.exe (aka the SAP DB Web Server) in SAP DB, possibly 7.3 through 7.5, allow remote attackers to execute arbitrary code via (1) a certain cookie value; (2) a certain additional parameter, related to sapdbwa_GetQueryString; and other unspecified vectors related to "numerous other fields."

Max CVSS

7.5

EPSS Score

53.65%

Published

2007-07-06

Updated

2018-10-15

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!