Unrated severityNVD Advisory· Published Apr 1, 2009· Updated Apr 23, 2026
CVE-2007-4475
CVE-2007-4475
Description
Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d.dll) in SAP AG SAPgui before 7.10 Patch Level 9 allows remote attackers to execute arbitrary code via a long argument to the SaveViewToSessionFile method.
Affected products
12cpe:2.3:a:sap:sapgui:*:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:sap:sapgui:*:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6a:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6a:*:windows:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6b:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6b:*:windows:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6c:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6c:*:windows:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6d:*:*:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6d:*:windows:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:4.6:*:windows:*:*:*:*:*
- cpe:2.3:a:sap:sapgui:6.40:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- www.kb.cert.org/vuls/id/985449nvdPatchUS Government Resource
- service.sap.com/sap/support/notes/1153794nvdPatchVendor Advisory
- secunia.com/advisories/34559nvd
- www.securityfocus.com/bid/34310nvd
- www.vupen.com/english/advisories/2009/0892nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/49543nvd
News mentions
0No linked articles in our index yet.