Loading
Unspecified vulnerability in the Simba MDrmSap ActiveX control in mdrmsap.dll in SAP SAPgui allows remote attackers to execute arbitrary code via unknown vectors involving instantiation by Internet Explorer.
Use CWE-94, Sap vendor hub and Sapgui product page to widen CVE-2008-4387 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2008-0620, CVE-2007-4475 and CVE-2008-0621 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: February 13th, 2026.