SAP Knowledge Base Article - Preview

2012498 - VGX.DLL vulnerability in Microsoft Internet Explorer (CVE-2014-1776) and the impact to SAP BusinessObjects BI


  • A "use-after-free" vulnerability in VGX.DLL in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2014.
  • This Vulnerability in Internet Explorer could allow remote code execution




  • Microsoft Internet Explorer 6, 7, 8, 9, 10, 11
  • SAP BusinessObjects XI3.1 and SAP BusinessObjects Business Intelligence BI4.x


SAP BusinessObjects Business Intelligence platform 4.0 ; SAP BusinessObjects Business Intelligence platform 4.1 ; SAP BusinessObjects Enterprise XI 3.1


Microsoft, Internet Explorer, Vulnerability, IE, CVE-2014-1776, vgx, vgs.dll, use-after-free, use after free, security , KBA , BI-BIP-INS , Installation, Updates, Upgrade, Patching , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.