What is CVE-2008-4830?

CVE-2008-4830 is a vulnerability in N/a. Published 2009-04-16.

Is CVE-2008-4830 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-4830

Insecure method vulnerability in the KWEdit ActiveX control in SAP GUI 6.40 Patch 29 (KWEDIT.DLL 6400.1.1.41) and 7.10 Patch 5 (KWEDIT.DLL 7100.1.1.43) allows remote attackers to (1) overwrite arbitrary files via the SaveDocumentAs method…

EPSS: 0.625 (98.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

secunia.com/secunia_research/2008-56/ (x_refsource_MISC)
32869 (x_refsource_SECUNIA, third-party-advisory)
20090415 Secunia Research: SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method (mailing-list, x_refsource_BUGTRAQ)
ADV-2009-1043 (vdb-entry, x_refsource_VUPEN)
34524 (vdb-entry, x_refsource_BID)
1022062 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2008-4830?: CVE-2008-4830 is a vulnerability in N/a. Published 2009-04-16.
Is CVE-2008-4830 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.