virus logo Intrusion Prevention

SAP.3D.Visual.Enterprise.Viewer.DDS.File.Memory.Corruption

description-logoDescription

This indicates an attack attempt against a Memory Corruption vulnerability in SAP 3D Visual Enterprise Viewer.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted DDS file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted DDS file.

affected-products-logoAffected Products

SAP 3D Visual Enterprise Viewer version 8.0.501.14132 and before.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the patch available from the vendor:
https://blogs.sap.com/2016/03/08/sap-security-patch-day-march-2016/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

https://blogs.sap.com/2016/03/08/sap-security-patch-day-march-2016/ https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=451071888
ID 43443
Created Nov 23, 2016
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows
Affected App SAP