Vulnerability Details : CVE-2007-3614
Public exploit exists!
Multiple stack-based buffer overflows in waHTTP.exe (aka the SAP DB Web Server) in SAP DB, possibly 7.3 through 7.5, allow remote attackers to execute arbitrary code via (1) a certain cookie value; (2) a certain additional parameter, related to sapdbwa_GetQueryString; and other unspecified vectors related to "numerous other fields."
Vulnerability category: Execute code
Products affected by CVE-2007-3614
- cpe:2.3:a:sap:sap_db:7.3.00:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.4.3.7_beta:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.3.29:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.4:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.4.03.30:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.4.03.29:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sap_db:7.5:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-3614
59.02%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 98 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2007-3614
-
SAP DB 7.4 WebTools Buffer Overflow
Disclosure Date: 2007-07-05First seen: 2020-04-26exploit/windows/http/sapdb_webtoolsThis module exploits a stack buffer overflow in SAP DB 7.4 WebTools. By sending an overly long GET request, it may be possible for an attacker to execute arbitrary code. Authors: - MC <mc@metasploit.com>
CVSS scores for CVE-2007-3614
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2007-3614
-
http://www.securityfocus.com/archive/1/472891/100/0/threaded
-
http://www.kb.cert.org/vuls/id/679041
US Government Resource
-
http://www.securityfocus.com/bid/24773
SAP DB Web Server WAHTTP.EXE Multiple Buffer Overflow VulnerabilitiesExploit;Patch
-
http://www.securitytracker.com/id?1018341
-
http://securityreason.com/securityalert/2867
-
http://www.ngssoftware.com/advisories/critical-risk-vulnerability-in-sap-db-web-server-stack-overflow/
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/35277
-
http://www.vupen.com/english/advisories/2007/2453
Jump to