2024 Jul 18 4:23 AM - edited 2024 Jul 18 4:24 AM
We are currently using Crystal Reports 2008 version 12.3.0.601 and is no longer in active development.
This version contains the below risks
CVE-2010-2567: This vulnerability is a buffer overflow issue in the Print ActiveX Control, allowing remote attackers to execute arbitrary code via crafted input.
CVE-2010-2590: This vulnerability is related to improper input validation in the Print ActiveX Control, also allowing remote attackers to execute arbitrary code.
We need to know from SAP and check if these vulnerabilities have actually been addressed (I doubt)
User | Count |
---|---|
69 | |
11 | |
10 | |
10 | |
9 | |
7 | |
7 | |
7 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.