CVE-2008-0307

Published: Mar 11, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Integer signedness error in vserver in SAP MaxDB 7.6.0.37, and possibly other versions, allows remote attackers to execute arbitrary code via unknown vectors that trigger heap corruption.

Affected (1)

Products: Sap: Maxdb

Sap

1 product

Maxdb

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sap Maxdb	Version 7.6.0.37

Related CWEs

CWE-189

References (12)

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=669

Source: cve@mitre.org

http://secunia.com/advisories/29312

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/28183

Source: cve@mitre.org

http://www.securitytracker.com/id?1019571

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/0844/references

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/41107

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=669