Description
Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d.dll) in SAP AG SAPgui before 7.10 Patch Level 9 allows remote attackers to execute arbitrary code via a long argument to the SaveViewToSessionFile method.
Affected products
- SAP / sapgui
- SAP / sapgui4.6 – 4.6
- SAP / sapgui4.6 – 4.6
- SAP / sapgui4.6a – 4.6a
- SAP / sapgui4.6a – 4.6a
- SAP / sapgui4.6b – 4.6b
- SAP / sapgui4.6b – 4.6b
- SAP / sapgui4.6c – 4.6c
- SAP / sapgui4.6c – 4.6c
- SAP / sapgui4.6d – 4.6d
- SAP / sapgui4.6d – 4.6d
- SAP / sapgui6.40 – 6.40
References
- MISChttp://www.securityfocus.com/bid/34310
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0892
- MISChttp://www.kb.cert.org/vuls/id/985449
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/49543
- MISChttps://service.sap.com/sap/support/notes/1153794
- VENDOR_ADVISORYhttp://secunia.com/advisories/34559