Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 05:47:00 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1154364561&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F0901-advisories%2Fsecunia-sapgui.txt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1154364561.1338184020.1338184020.1338184020.1%3B%2B__utmz%3D32867617.1338184020.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/73654/secunia-sapgui.txt http://packetstormsecurity.org/files/73654/secunia-sapgui.txt http://packetstormsecurity.org/files/73654/SAP-GUI-TabOne-ActiveX-Control-Caption-List-Buffer-Overflow.html Wed, 07 Jan 2009 20:02:45 GMT Secunia Research has discovered a vulnerability in SAP GUI, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to a boundary error in the included TabOne ActiveX control (sizerone.ocx) when copying tab captions. This can be exploited to cause a heap-based buffer overflow by e.g. adding multiple tabs via the "AddTab()" method. Successful exploitation may allow execution of arbitrary code. SAP GUI 6.40 Patch 29 and SAP GUI 7.10 are both affected.