Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-4475

CWE-119Buffer Overflow5 documents4 sources
Severity
9.3CRITICAL
EPSS
68.0%
top 1.41%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SAP Sapgui
Timeline
PublishedApr 1
Latest updateMay 1

Description

Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d.dll) in SAP AG SAPgui before 7.10 Patch Level 9 allows remote attackers to execute arbitrary code via a long argument to the SaveViewToSessionFile method.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDsap/sapgui7.10+6

Patches

Patch: www.kb.cert.orgPatch: service.sap.comPatch: www.kb.cert.org

🔴Vulnerability Details

2
GHSA
GHSA-82mh-7w4c-7wxg: Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d2022-05-01
CVEList
CVE-2007-4475: Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d2009-04-01

💥Exploits & PoCs

2
Exploit-DB
SAP AG SAPgui EAI WebViewer3D - Remote Buffer Overflow (Metasploit)2010-05-09
Exploit-DB
SAP MaxDB 7.4/7.6 - 'webdbm' Multiple Cross-Site Scripting Vulnerabilities2009-03-31
CVE-2007-4475 (CRITICAL CVSS 9.3) | Stack-based buffer overflow in EAI | cvebase.io