cbcvebase.
CVE-2004-0204
published 2004-08-06

CVE-2004-0204: Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio…

PriorityP354high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
72.99%
99.4th percentile
Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used in Visual Studio .NET 2003 and Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1.2, and other products, allows remote attackers to read and delete arbitrary files via ".." sequences in the dynamicimag argument to crystalimagehandler.aspx.

Affected

10 ranges
VendorProductVersion rangeFixed in
beaweblogic_server
businessobjectscrystal_enterprise
businessobjectscrystal_enterprise
businessobjectscrystal_enterprise_java_sdk
businessobjectscrystal_enterprise_ras
businessobjectscrystal_reports
businessobjectscrystal_reports
microsoftbusiness_solutions_crm
microsoftoutlook
microsoftvisual_studio_net

Detection & IOCsextracted from sources · hover to see the quote

path/crystalreportviewers/crystalimagehandler.aspx
  • Monitor HTTP requests targeting 'crystalimagehandler.aspx' with a 'dynamicimage' parameter containing directory traversal sequences ('..\' or '../')
  • ·The vulnerability exists in the 'dynamicimage' parameter (note: NVD spells it 'dynamicimag' — likely a typo); detection rules should match the actual parameter name 'dynamicimage' as seen in the PoC URL
  • ·Affected deployments span multiple products that redistribute Crystal Reports (Visual Studio .NET 2003, Outlook 2003 with Business Contact Manager, Microsoft Business Solutions CRM 1.2); detection should be applied broadly across any IIS host serving crystalimagehandler.aspx
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.