Vulnerabilities > CVE-2007-3608 - Unspecified vulnerability in SAP Enjoysap
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sap
exploit available
Summary
Multiple unspecified vulnerabilities in ActiveX controls in the EnjoySAP SAP GUI allow remote attackers to create certain files via unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description EnjoySAP ActiveX rfcguisink.rfcguisink.1 Remote Heap Overflow PoC. CVE-2007-3606,CVE-2007-3607,CVE-2007-3608. Dos exploit for windows platform file exploits/windows/dos/4149.html id EDB-ID:4149 last seen 2016-01-31 modified 2007-07-05 platform windows port published 2007-07-05 reporter Mark Litchfield source https://www.exploit-db.com/download/4149/ title EnjoySAP ActiveX rfcguisink.rfcguisink.1 - Remote Heap Overflow PoC type dos description EnjoySAP ActiveX kweditcontrol.kwedit.1 Remote Stack Overflow PoC. CVE-2007-3605,CVE-2007-3607,CVE-2007-3608. Dos exploit for windows platform file exploits/windows/dos/4148.html id EDB-ID:4148 last seen 2016-01-31 modified 2007-07-05 platform windows port published 2007-07-05 reporter Mark Litchfield source https://www.exploit-db.com/download/4148/ title EnjoySAP ActiveX kweditcontrol.kwedit.1 - Remote Stack Overflow PoC type dos
References
- http://osvdb.org/37687
- http://osvdb.org/37687
- http://securityreason.com/securityalert/2873
- http://securityreason.com/securityalert/2873
- http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-enjoysap-stack-overflow/
- http://www.ngssoftware.com/advisories/high-risk-vulnerability-in-enjoysap-stack-overflow/
- http://www.securityfocus.com/archive/1/472887/100/0/threaded
- http://www.securityfocus.com/archive/1/472887/100/0/threaded
- http://www.securityfocus.com/bid/24776
- http://www.securityfocus.com/bid/24776
- https://www.exploit-db.com/exploits/4148
- https://www.exploit-db.com/exploits/4148
- https://www.exploit-db.com/exploits/4149
- https://www.exploit-db.com/exploits/4149