CVE-2004-2742

CVE-2004-2742

EPSS 1.2%

Cross-site scripting (XSS) vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote attackers to inject arbitrary web script or HTML via script in the URL to a report (RPT) file.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://secunia.com/advisories/13644 http://securitytracker.com/id?1012703 https://exchange.xforce.ibmcloud.com/vulnerabilities/18684 http://support.businessobjects.com/library/kbase/articles/c2016559.asp http://www.osvdb.org/12596 http://www.securityfocus.com/bid/12107