Multiple untrusted search path vulnerabilities in (1) SAPGui.exe and (2) BExAnalyzer.exe in SAP GUI 6.4 through 7.2 allow local users to gain privileges via a Trojan horse MFC80LOC.DLL file in the current working directory, as demonstrated by a directory that contains a .sap file. NOTE: some of these details are obtained from third party information.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2012-09-06 03:41
Updated : 2021-01-15 05:29
NVD link : CVE-2011-5154
Mitre link : CVE-2011-5154
JSON object : View
CWE
Products Affected
sap
- graphical_user_interface