OSVDB ID: 6749

Title: Microsoft Crystal Reports Web Viewer crystalimagehandler.aspxArbitrary File Access

Info

Disclosure

Jun 08, 2004

Discovery

May 02, 2004

Dates

Exploit

Unknown

Solution

Unknown

Description

Microsoft Crystal Reports Web Viewer contains a flaw that allows a remote attacker to view or delete files outside of the web path. The issue is due to the program not properly sanitizing user input, specifically traversal style attacks (../../). Systems are only vulnerable if they have an IIS server installed.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Information Disclosure, Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity, Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Business Solutions CRM	1.2
	Office	2003 Professional Edition
	Office	2003 Small Business Edition
	Outlook	2003
	Visual Studio	.Net

References

Bugtraq ID: 10260
Secunia Advisory ID: 11803 11958
CVE ID: 2004-0204 (see also: NVD)
Microsoft Knowledge Base Article: 842689
Vendor Specific Advisory URL: http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_63.00.jsp
http://www.netiq.com/kb/esupport/consumer/solution.asp?id=GUID1ea761f8%5F7c06%5F42b0%5F8710%5F4ae9555cf8a8&resource=&nShowFacts=&nShowCause=&nShowChange=&nShowAddInfo=&number=18&searchtype=normal&searchclass=&bnewsession=false
Microsoft Security Bulletin: ms04-017

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/6749

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Business Solutions CRM

Office

Outlook

Visual Studio

References

Credit