On 8/11/2010 12:12 PM, ZDI Disclosures wrote:
The specific flaw exists within the ebus-3-3-2-6.dll module responsible for
parsing GIOP requests for multiple processes.
Does this affect only version 3.3.2.6?
-- Vendor Response:
SAP has issued an update to correct this vulnerability. More deta
CORRECTION:
===
TPTI-10-07: SAP Crystal Reports 2008 GIOP Message Size Integer Overflow Remote
Code Execution Vulnerability
http://dvlabs.tippingpoint.com/advisory/TPTI-10-07
August 11, 2010
==
Should replace
==
ZDI-10-151: SAP Crystal Reports 2008 GIOP Message Siz
