cancel
Showing results for 
Search instead for 
Did you mean: 

Inquiry About Vulnerability Fixes in Service Pack 4 for Crystal Reports 2008

Murtaza_Nadeem
Discoverer
0 Kudos
134

We are currently using Crystal Reports 2008, version 12.3.0.601, which is no longer in active development. We have identified the following vulnerabilities in this version:

CVE-2010-2
567: This vulnerability is a buffer overflow issue in the Print ActiveX Control, allowing remote attackers to execute arbitrary code via crafted input.
CVE-2010-2590: This vulnerability is related to improper input validation in the Print ActiveX Control,
also allowing remote attackers to execute arbitrary code.
Could you please confirm if these vulnerabilities have been addressed in Service Pack 4?

Your prompt response would be greatly appreciated.

Accepted Solutions (0)

Answers (0)