SAP.GUI.SAPBExCommonResources.ActiveX.Command.Execution
Description
This indicates an attempt to exploit a buffer-overflow vulnerability in SAP GUI.
This vulnerability is caused by an error in the "SAPBExCommonResources" ActiveX control when processing malicious arguments passed to the "Execute()" method. It allows a remote attacker to execute arbitrary code via a crafted web page.
Affected Products
SAP GUI versions 7.x
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Set the kill bit for the affected ActiveX control.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |