>> SAP GUI SAPlpd Multiple Command Buffer Overflow and Denial of Service
Title : SAP GUI SAPlpd Multiple Command Buffer Overflow and Denial of Service VUPEN ID : VUPEN/ADV-2008-0409 CVE ID : CVE-2008-0620 - CVE-2008-0621
Rated as : High Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-02-05
Technical Description
Multiple vulnerabilities have been identified in SAP GUI, which could be exploited by attackers to cause a denial of service or execute arbitrary code. These issues are caused by buffer overflow and design errors in various commands within "SAPlpd" when processing user-supplied data, which could be exploited by attackers to terminate a vulnerable daemon or compromise an affected system via a specially crafted command.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
