Sign-up

ID

VAR-201409-0767


CVE

CVE-2014-5505


TITLE

SAP Crystal Reports Vulnerable to stack-based buffer overflow

Trust: 0.8

sources: JVNDB: JVNDB-2014-004050

DESCRIPTION

Stack-based buffer overflow in SAP Crystal Reports allows remote attackers to execute arbitrary code via a crafted data source string in an RPT file. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the handling of RPT files. The issue lies in the processing of data source strings. An attacker can leverage this vulnerability to execute code under the context of the current process. Failed exploit attempts may result in a denial-of-service condition

Trust: 2.52

sources: NVD: CVE-2014-5505 // JVNDB: JVNDB-2014-004050 // ZDI: ZDI-14-301 // BID: 69558

AFFECTED PRODUCTS

vendor:sapmodel:crystal reportsscope:eqversion: -

Trust: 1.6

vendor:sapmodel:crystal reportsscope: - version: -

Trust: 1.5

sources: ZDI: ZDI-14-301 // JVNDB: JVNDB-2014-004050 // CNNVD: CNNVD-201409-041 // NVD: CVE-2014-5505

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-5505
value: MEDIUM

Trust: 1.0

NVD: CVE-2014-5505
value: MEDIUM

Trust: 0.8

ZDI: CVE-2014-5505
value: MEDIUM

Trust: 0.7

CNNVD: CNNVD-201409-041
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2014-5505
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 2.5

sources: ZDI: ZDI-14-301 // JVNDB: JVNDB-2014-004050 // CNNVD: CNNVD-201409-041 // NVD: CVE-2014-5505

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.8

sources: JVNDB: JVNDB-2014-004050 // NVD: CVE-2014-5505

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201409-041

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201409-041

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2014-004050

PATCH
title:SAP Security Note 1999142url:http://scn.sap.com/docs/DOC-8218
Trust: 0.8
title:SAP has issued an update to correct this vulnerability.url:http://service.sap.com/sap/support/notes/1999142
Trust: 0.7
sources:
            
            
            ZDI: ZDI-14-301 // 
            
            
            
            JVNDB: JVNDB-2014-004050

EXTERNAL IDS
db:NVDid:CVE-2014-5505
Trust: 3.4
db:ZDIid:ZDI-14-301
Trust: 3.4
db:BIDid:69558
Trust: 1.3
db:SECUNIAid:60877
Trust: 1.0
db:JVNDBid:JVNDB-2014-004050
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-2146
Trust: 0.7
db:CNNVDid:CNNVD-201409-041
Trust: 0.6
sources:
            
            
            ZDI: ZDI-14-301 // 
            
            
            
            BID: 69558 // 
            
            
            
            JVNDB: JVNDB-2014-004050 // 
            
            
            
            CNNVD: CNNVD-201409-041 // 
            
            
            
            NVD: CVE-2014-5505

REFERENCES
url:https://service.sap.com/sap/support/notes/1999142
Trust: 2.3
url:http://www.zerodayinitiative.com/advisories/zdi-14-301/
Trust: 1.9
url:http://scn.sap.com/docs/doc-8218
Trust: 1.6
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/95740
Trust: 1.0
url:http://secunia.com/advisories/60877
Trust: 1.0
url:http://www.securityfocus.com/bid/69558
Trust: 1.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-5505
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-5505
Trust: 0.8
url:http://www.zerodayinitiative.com/advisories/zdi-14-301
Trust: 0.8
url:http://www.sap.com/solutions/sap-crystal-solutions/query-reporting-analysis/sapcrystalreports/index.epx
Trust: 0.3
sources:
            
            
            ZDI: ZDI-14-301 // 
            
            
            
            BID: 69558 // 
            
            
            
            JVNDB: JVNDB-2014-004050 // 
            
            
            
            CNNVD: CNNVD-201409-041 // 
            
            
            
            NVD: CVE-2014-5505

CREDITS
Aniway.Anyway@gmail.com
Trust: 1.0
sources:
            
            
            ZDI: ZDI-14-301 // 
            
            
            
            BID: 69558

SOURCES
db:ZDIid:ZDI-14-301
db:BIDid:69558
db:JVNDBid:JVNDB-2014-004050
db:CNNVDid:CNNVD-201409-041
db:NVDid:CVE-2014-5505

LAST UPDATE DATE
2024-11-23T21:44:57.128000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-14-301date:2014-09-03T00:00:00
db:BIDid:69558date:2014-09-03T00:00:00
db:JVNDBid:JVNDB-2014-004050date:2014-09-08T00:00:00
db:CNNVDid:CNNVD-201409-041date:2014-09-05T00:00:00
db:NVDid:CVE-2014-5505date:2024-11-21T02:12:08.757

SOURCES RELEASE DATE
db:ZDIid:ZDI-14-301date:2014-09-03T00:00:00
db:BIDid:69558date:2014-09-03T00:00:00
db:JVNDBid:JVNDB-2014-004050date:2014-09-08T00:00:00
db:CNNVDid:CNNVD-201409-041date:2014-09-05T00:00:00
db:NVDid:CVE-2014-5505date:2014-09-04T17:55:08.887