Secunia Research: SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method

====================================================================== Secunia Research 15/04/2009 - SAP GUI KWEdit ActiveX Control "SaveDocumentAs" Insecure Method - ====================================================================== Table of Contents Affected...

SAP GUI unauthorized access

KWEdit ActiveX has unsafe SaveDocumentAs method...

SAP GUI KWEdit ActiveX控件不安全SaveDocumentAs()调用漏洞

BUGTRAQ ID: 34524 CVECAN ID: CVE-2008-4830 SAPgui是SAP软件的图形用户界面客户端。 SAPgui所捆绑的KWEdit ActiveX控件（KWEDIT.DLL）提供了不安全的SaveDocumentAs函数。如果用户受骗访问了恶意网页的话，该函数可能将 HTML文档保存到指定的位置。如果结合OpenDocument方式的话，远程攻击者就可以泄露任意文件的内容，或在用户系统上执行任意代码。 SAP Sapgui 7.10 Patch 5 SAP Sapgui 6.40 Patch 29 SAP ---...

SAP GUI KWEdit ActiveX Control SaveDocumentAs() Insecure Method

The version of the KWEdit ActiveX control on the remote host is reportedly affected by a remote code execution vulnerability. The control provides the insecure method 'SaveDocumentAs', which saves an HTML document to a specified location. This can be exploited in combination with e.g. the...