5 matches found
SAP GUI for Windows sapirrfc.dll Overflow
SAP GUI for Windows sapirrfc.dll Accecpt Activex Overflow www.Abysssec.com Public Exploit / Application: SAP GUI for Windows, EnjoySAP Versions Affected: Version 6.4 Vendor URL: http://SAP.com Bugs: Buffer Overflow Exploits: YES Reported: 13.11.2008 Vendor response: 17.11.2008 Date of Public...
SAP GUI for Windows - sapirrfc.dll ActiveX Overflow
SAP GUI for Windows - sapirrfc.dll ActiveX Overflow SAP GUI for Windows sapirrfc.dll Accecpt Activex Overflow www.Abysssec.com Public Exploit / Application: SAP GUI for Windows, EnjoySAP Versions Affected: Version 6.4 Vendor URL: http://SAP.com Bugs: Buffer Overflow Exploits: YES Reported:...
SAP GUI for Windows sapirrfc.dll Activex Overflow Exploit
No description provided by source. html title SAP GUI for Windows sapirrfc.dll Accecpt Activex Overflow /title center h1 www.Abysssec.com Public Exploit h1 /center object classid='clsid:77F12F8A-F117-11D0-8CF1-00A0C91D9D87' id='target' / script / Application: SAP GUI for Windows, EnjoySAP Version...
SAP SAPgui SAPIrRfc ActiveX (sapirrfc.dll) Accept Function Overflow
The remote host contains the 'SAPIrRfc' ActiveX control included with SAP GUI version 6.40 for Windows. This control is reportedly affected by a heap-based overflow involving the 'Accept' method of 'IRfcServer' interface of the 'SAPIrRfc' control. If an attacker can trick a user on the affected...
SAP AG SAPgui sapirrfc.dll ActiveX控件缓冲区溢出漏洞
BUGTRAQ ID: 35256 SAPgui是SAP软件的图形用户界面客户端。 SAP GUI所捆绑的SAPIrRfc ActiveX组件(sapirrfc.dll,GUID = F6908F83-ADA6-11D0-87AA-00AA00198702)没有正确的验证用户对Accept函数所传送的参数。如果用户受骗访问了恶意网页并向该函数传送了超长参数的话,就可能触发缓冲区溢出,导致在目标系统上执行任意代码。 SAP Sapgui 6.4 厂商补丁: SAP --- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...