Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0621

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0621
Last Modified 07 Mar 2011 10:05:00
Published 06 Feb 2008 07:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0621

Summary

Buffer overflow in SAPLPD 6.28 and earlier included in SAP GUI 7.10 and SAPSprint before 1018 allows remote attackers to execute arbitrary code via long arguments to the (1) 0x01, (2) 0x02, (3) 0x03, (4) 0x04, and (5) 0x05 LPD commands.

Vulnerable Systems

Application

  • Sapgui 7.10

  • Saplpd 6.28

  • Sapsprint


References

VUPEN - ADV-2008-0438

VUPEN - ADV-2008-0409

SECTRACK - 1019300

BID - 27613

BUGTRAQ - 20080205 Re: Multiple vulnerabilities in SAPlpd 6.28

BUGTRAQ - 20080204 Multiple vulnerabilities in SAPlpd 6.28

SECUNIA - 28786

MILW0RM - 5079

SREASON - 3619

SECUNIA - 28811


Last Updated: 27 May 2016 10:46:52