Vulnerability in Sap Crystal_reports
CVE-2014-5506
Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbitrary code via crafted connection string record in an RPT file.
EPSS: 0.021 (84.3th percentile) — read the EPSS interpretation.
Affected products
- Sap Crystal_reports
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (x_refsource_CONFIRM)
- 69557 (vdb-entry, x_refsource_BID)
- 61016 (x_refsource_SECUNIA, third-party-advisory)