1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: SAP Crystal Reports CVE-2010-2590 2

Web Attack: SAP Crystal Reports CVE-2010-2590 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a buffer overflow vulnerability in SAP Crystal Reports which may result in remote code execution.

Additional Information

SAP Crystal Reports Print ActiveX control is a component that allows users to view crystal reports.

SAP Crystal Reports is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. The vulnerability affects the 'ServerResourceVersion' property of the 'CrystalReports12.CrystalPrintControl.1' ActiveX control ('PrintControl.dll'). The ActiveX control is identified by CLSID: 88DD90B6-C770-4CFF-B7A4-3AFD16BB8824.

An attacker can exploit this issue by enticing an unsuspecting user to view a malicious HTML page.

Successful exploits allow remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts will likely result in denial-of-service conditions.

Affected

  • SAP Crystal Reports 2008
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube