Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4387

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-4387
Last Modified 07 Mar 2011 10:12:22
Published 10 Nov 2008 11:15:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4387

Summary

Unspecified vulnerability in the Simba MDrmSap ActiveX control in mdrmsap.dll in SAP SAPgui allows remote attackers to execute arbitrary code via unknown vectors involving instantiation by Internet Explorer.

Vulnerable Systems

Application

  • Sapgui

  • Simba Technologies Mdrmsap Activex Control


References

CERT-VN - VU#277313

XF - sap-mdrmsap-code-execution(46440)

VUPEN - ADV-2008-3106

BID - 32186

OSVDB - 49721


Last Updated: 27 May 2016 10:48:28