CVE-2008-1894
https://notcve.org/view.php?id=CVE-2008-1894
Cross-site scripting (XSS) vulnerability in desktoplaunch/InfoView/logon/logon.object in BusinessObjects InfoView XI R2 SP1, SP2, and SP3 Java version before FixPack 3.5 allows remote attackers to inject arbitrary web script or HTML via the cms parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en desktoplaunch/InfoView/logon/logon.object de BusinessObjects InfoView XI R2 SP1, SP2 y SP3 Java version antes de FixPack 3.5 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través del parámetro cms. • http://lists.grok.org.uk/pipermail/full-disclosure/2008-April/061428.html http://marc.info/?l=bugtraq&m=120818789018302&w=2 http://osvdb.org/51450 http://resources.businessobjects.com/support/communitycs/FilesAndUpdates/boxir2_en_FixPack3.5_readme.pdf?recDnlReq=Record&dnlPath=boxir2_en_FixPack3.5_readme.pdf http://secunia.com/advisories/29804 http://www.securityfocus.com/bid/28762 https://exchange.xforce.ibmcloud.com/vulnerabilities/41875 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2008-0379 – Crystal Reports XI Release 2 (Enterprise Tree Control) - ActiveX Buffer Overflow (Denial of Service) (PoC)
https://notcve.org/view.php?id=CVE-2008-0379
Race condition in the Enterprise Tree ActiveX control (EnterpriseControls.dll 11.5.0.313) in Crystal Reports XI Release 2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SelectedSession method, which triggers a buffer overflow. Condición de carrera en el controlador ActiveX(EnterpriseControls.dll 11.5.0.313) en Crystal Reports XI Release 2 permite a atacantes remotos provocar denegación de servicio (caida) y posiblemente ejecutar código de su elección a través del método SelectedSession, el cual dispara un desbordamiento de búfer. • https://www.exploit-db.com/exploits/4931 http://www.securityfocus.com/bid/27333 http://www.securitytracker.com/id?1019239 https://exchange.xforce.ibmcloud.com/vulnerabilities/39743 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVE-2006-4099
https://notcve.org/view.php?id=CVE-2006-4099
Business Objects Crystal Enterprise 9 and 10 generates predictable session identifiers, which allows remote attackers to hijack sessions of other users via WCSID cookie values. Business Objects Crystal Enterprise 9 y 10 genera identificadores de sesión previsibles, que permite a atacantes remotos secuestrar sesiones de otros usuarios a través de los valores de la cookie WCSID. • http://secunia.com/advisories/23137 http://support.businessobjects.com/communityCS/FilesAndUpdates/ce10win_en.pdf http://www.mwrinfosecurity.com/advisories/MWR_crystal-reports-weak-sessions-advisory_2006-11-28.pdf http://www.securityfocus.com/bid/21350 http://www.uniras.gov.uk/niscc/docs/re-20061128-00818.pdf http://www.vupen.com/english/advisories/2006/4748 https://exchange.xforce.ibmcloud.com/vulnerabilities/30568 •
CVE-2006-6133 – Business Objects Crystal Reports XI Professional - File Handling Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-6133
Stack-based buffer overflow in Visual Studio Crystal Reports for Microsoft Visual Studio .NET 2002 and 2002 SP1, .NET 2003 and 2003 SP1, and 2005 and 2005 SP1 (formerly Business Objects Crystal Reports XI Professional) allows user-assisted remote attackers to execute arbitrary code via a crafted RPT file. Desbordamiento de búfer basado en pila en Visual Studio Crystal Reports para Microsoft Visual Studio .NET 2002 y 2002 SP1; .NET 2003 y 2003 SP1; y 2005 y 2005 SP1 (anteriormente Business Objects Crystal Reports XI Professional) permite a atacantes remotos con la ayuda del usuario, ejecutar código de su elección mediante un fichero RPT manipulado. • https://www.exploit-db.com/exploits/29171 http://secunia.com/advisories/23091 http://secunia.com/advisories/26754 http://securitytracker.com/id?1017279 http://www.lssec.com/advisories/LS-20061102.pdf http://www.securityfocus.com/archive/1/452464/100/0/threaded http://www.securityfocus.com/bid/21261 http://www.us-cert.gov/cas/techalerts/TA07-254A.html http://www.vupen.com/english/advisories/2006/4691 http://www.vupen.com/english/advisories/2007/3114 https://docs. • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2005-4813
https://notcve.org/view.php?id=CVE-2005-4813
Unspecified vulnerability in Report Application Server (Crystalras.exe) before 11.0.0.1370, as used in Business Objects Crystal Reports XI, Crystal Reports Server XI, and BusinessObjects Enterprise XI, allows remote attackers to cause a denial of service (application hang) via certain network traffic, possibly involving multiple simultaneous TCP connections. • http://secunia.com/advisories/16282 http://securitytracker.com/id?1014604 http://securitytracker.com/id?1014605 http://support.businessobjects.com/downloads/critical_updates/security_bulletin_june05.asp http://support.businessobjects.com/library/kbase/articles/c2017748.asp http://www.osvdb.org/18473 http://www.securityfocus.com/bid/14433 https://exchange.xforce.ibmcloud.com/vulnerabilities/21654 •