header-logo
Suggest Exploit
vendor:
SAP GUI
by:
Alexey Sintsov
9,3
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: SAP GUI
Affected Version From: 7.10
Affected Version To: 7.10
Patch Exists: YES
Related CWE: CVE-2009-1136
CPE: o:sap:sap_gui
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2009

SAP GUI version 7.10 WebViewer3D Active-X JIT-Spray exploit

This exploit is a buffer overflow vulnerability in the WebViewer3D Active-X control of SAP GUI version 7.10. It allows an attacker to execute arbitrary code on the target system by using a JIT-Spray technique.

Mitigation:

Upgrade to the latest version of SAP GUI.
Source

Exploit-DB raw data:

SAP GUI version 7.10 WebViewer3D Active-X JIT-Spray exploit
Author:	Alexey Sintsov
Homepage: http://www.dsec.ru/

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/11661.zip

Navigation

Suggest Exploit

Services By CQR