Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0204

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0204
Last Modified 10 Sep 2013 12:32:56
Published 06 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0204

Summary

Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1.2, and other products, allows remote attackers to read and delete arbitrary files via ".." sequences in the dynamicimag argument to crystalimagehandler.aspx.

Vulnerable Systems

Application

  • Bea Weblogic Server 8.1

  • Borland Software J Builder

  • Businessobjects Crystal Enterprise 10

  • Businessobjects Crystal Enterprise 9

  • Businessobjects Crystal Enterprise Java Sdk 8.5

  • Businessobjects Crystal Enterprise Ras 8.5

  • Businessobjects Crystal Reports 10

  • Businessobjects Crystal Reports 9

  • Microsoft Business Solutions Crm 1.2

  • Microsoft Outlook 2003

  • Microsoft Visual Studio .net 2003


References

BID - 10260

XF - crystalreports-file-deletion(16044)

MS - MS04-017

CONFIRM - http://support.businessobjects.com/fix/hot/critical/bulletins/security_bulletin_june04.asp

OSVDB - 6748

SECUNIA - 11800

BUGTRAQ - 20040608 Vulnerability: Arbitrary File Access & DoS in Crystal Reports

BUGTRAQ - 20040502 Crystal Reports Vulnerabilities


Last Updated: 27 May 2016 10:38:30