CVE-2007-6254

Опубликовано: 20 мар. 2008

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in the SAP Business Objects BusinessObjects RptViewerAX ActiveX control in RptViewerAX.dll in Business Objects 6.5 before CHF74 allows remote attackers to execute arbitrary code via unspecified vectors.

Ссылки

http://secunia.com/advisories/29437
Vendor Advisory
http://www.kb.cert.org/vuls/id/329673
Exploit
US Government Resource
http://www.kb.cert.org/vuls/id/MIMG-732R7X
Patch
http://www.securityfocus.com/bid/28292
http://www.securitytracker.com/id?1019668
http://www.vupen.com/english/advisories/2008/0927/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41256
http://secunia.com/advisories/29437
Vendor Advisory
http://www.kb.cert.org/vuls/id/329673
Exploit
US Government Resource
http://www.kb.cert.org/vuls/id/MIMG-732R7X
Patch
http://www.securityfocus.com/bid/28292
http://www.securitytracker.com/id?1019668
http://www.vupen.com/english/advisories/2008/0927/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41256

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sap:business_objects:*:*:*:*:*:*:*:*

Версия до 6.5 (включая)

EPSS

Процентиль: 97%

0.32178

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-q4m7-4g4r-h962

github

почти 4 года назад