Double Free Vulnerability in SAP Crystal Reports: Remote Code Execution via Crafted Connection String Record

CVE-2014-5506

Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbitrary code via crafted connection string record in an RPT file.

Learn more about our Web Application Penetration Testing UK.