CVE-2007-4475

This is a Metasploit module exploiting a stack buffer overflow in the SAPgui EAI WebViewer3D ActiveX control via the SaveViewToSessionFile() method. It delivers a payload through a malicious HTML page, achieving remote code execution.

The provided code is a writeup describing multiple XSS vulnerabilities in SAP MaxDB. It includes example URLs demonstrating how unsanitized user input in the 'Database', 'User', and 'Password' parameters can lead to arbitrary script execution in the context of the affected site.

This Metasploit module exploits a stack buffer overflow in the SAPgui EAI WebViewer3D ActiveX control via the SaveViewToSessionFile() method. It delivers a malicious HTML page with obfuscated JavaScript to trigger the vulnerability and execute arbitrary code.