Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2004-0204
- EPSS 77.62%
- Veröffentlicht 06.08.2004 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1....
- EPSS 0.65%
- Veröffentlicht 02.05.2004 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
The web interface for Crystal Reports allows remote attackers to cause a denial of service (disk exhaustion) by repeatedly requesting reports without retrieving the associated image files, which are not cleared from the image file folder.
7.5
CVE-2001-1464
- EPSS 0.7%
- Veröffentlicht 10.01.2001 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to obtain passwords.
1