SAP 3D Visual Enterprise Author, a desktop application for managing 2D, 3D, animation, video and audio assets from SAP, Germany, is vulnerable to a buffer overflow vulnerability in SAP 3D Visual Enterprise Author version 9, which stems from a lack of proper memory management and could be exploited by an attacker via a specially crafted file (.jt, JtTranslator.exe) to remotely execute code when the payload forces a stack-based overflow or reuse a dangling pointer to an overwritten space in memory to remotely execute code.