SAP : Security Vulnerabilities, CVEs, Published In 2007
CVE-2007-3605
Public exploit
Stack-based buffer overflow in the kweditcontrol.kwedit.1 ActiveX control in FrontEnd\SapGui\kwedit.dll in the EnjoySAP SAP GUI allows remote attackers to execute arbitrary code via a long argument to the PrepareToPostHTML function.
Max CVSS
7.6
EPSS Score
95.19%
Published
2007-07-06
Updated
2018-10-15
CVE-2007-3614
Public exploit
Multiple stack-based buffer overflows in waHTTP.exe (aka the SAP DB Web Server) in SAP DB, possibly 7.3 through 7.5, allow remote attackers to execute arbitrary code via (1) a certain cookie value; (2) a certain additional parameter, related to sapdbwa_GetQueryString; and other unspecified vectors related to "numerous other fields."
Max CVSS
7.5
EPSS Score
53.65%
Published
2007-07-06
Updated
2018-10-15
2 vulnerabilities found