This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
The remote Windows host has an ActiveX control that is affected by
multiple buffer overflow vulnerabilities.
The version of the SAP GUI Moniker Creation ActiveX control installed
on the remote Windows host is reportedly affected by 3 stack-based
buffer overflows involving various properties and methods in
'MonikerUtil_dll.dll'. If an attacker can trick a user on the
affected host into viewing a specially crafted HTML document, he can
leverage these issues to execute arbitrary code subject to the user's
See also :
Upgrade to SAP GUI 7.10 Patch Level 9 or newer.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true