SAP.3D.Visual.Enterprise.Viewer.DDS.File.Memory.Corruption
Description
This indicates an attack attempt against a Memory Corruption vulnerability in SAP 3D Visual Enterprise Viewer.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted DDS file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted DDS file.
Affected Products
SAP 3D Visual Enterprise Viewer version 8.0.501.14132 and before.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the patch available from the vendor:
https://blogs.sap.com/2016/03/08/sap-security-patch-day-march-2016/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |