CVE-2008-4387
The CVE concerns SAP GUI for Windows (SAPgui) component MDrmSap ActiveX (mdrmsap.dll). A buffer overflow in the ActiveX control, reportedly affected in version 3.5.1.635 (and possibly earlier), can be triggered during instantiation from Internet Explorer, enabling remote code execution with user ...