CVE-2014-5506

CVE-2014-5506

EPSS 3.1%

Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbitrary code via crafted connection string record in an RPT file.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://scn.sap.com/docs/DOC-8218 http://secunia.com/advisories/61016 https://service.sap.com/sap/support/notes/1999142 http://www.securityfocus.com/bid/69557 http://www.zerodayinitiative.com/advisories/ZDI-14-302/