Vulnerabilities > CVE-2014-5506 - Remote Code Execution vulnerability in SAP Crystal Reports
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
sap
Summary
Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbitrary code via crafted connection string record in an RPT file. <a href="http://cwe.mitre.org/data/definitions/415.html" target="_blank">CWE-415: Double Free</a>
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |