Skip links

XML External Entity vulnerability in Crystal Reports for Enterprise, SAP security note 2569748

Description

A user can experience errors/hangs when interacting with a Crystal Reports for Enterprise report that embeds an Xcelsius SWF object.

Available fix and Supported packages

  • ENTERPRISE | 410 | 410
  • ENTERPRISE | 420 | 420
  • SBOP BI PLATFORM SERVERS 4.1 | SP011 | 000000
  • SBOP BI PLATFORM SERVERS 4.2 | SP006 | 000000

Affected component

    BI-RA-CRE
    Crystal Reports for Enterprise

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/2569748

TAGS

#Crystal-Reports-for-Enterprise
#XML-External-Entity
#Xcelsius
#SWF