CVE-2014-5505

Currently unrated

Key Information:

Vendor: SAP
Status: Crystal Reports
Vendor: CVE Published:; 4 September 2014

Summary

Stack-based buffer overflow in SAP Crystal Reports allows remote attackers to execute arbitrary code via a crafted data source string in an RPT file.

References

http://secunia.com/advisories/60877

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/95740

vdb-entryx_refsource_XF

https://service.sap.com/sap/support/notes/1999142

x_refsource_CONFIRM

EPSS Score

59% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 4, 2014
Vulnerability Reserved
Aug 28, 2014

.