CVE-2008-4387
SAP SAPgui - Remote Code Execution via Simba MDrmSap ActiveX Control
Title source: llmDescription
Unspecified vulnerability in the Simba MDrmSap ActiveX control in mdrmsap.dll in SAP SAPgui allows remote attackers to execute arbitrary code via unknown vectors involving instantiation by Internet Explorer.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/49721
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/32186
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46440
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/3106
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/277313
Scores
EPSS
0.1822
EPSS Percentile
95.3%
Details
CWE
CWE-94
Status
published
Products (2)
sap/sapgui
simba_technologies/mdrmsap_activex_control
Published
Nov 10, 2008
Tracked Since
Feb 18, 2026