Unrated severityNVD Advisory· Published Jan 22, 2008· Updated Jun 16, 2026
CVE-2008-0379
CVE-2008-0379
Description
Race condition in the Enterprise Tree ActiveX control (EnterpriseControls.dll 11.5.0.313) in Crystal Reports XI Release 2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SelectedSession method, which triggers a buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:businessobjects:crystal_reports_xi:r2:*:*:*:*:*:*:*
- Range: XI Release 2
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/27333nvdBroken LinkExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/4931nvdExploitThird Party AdvisoryVDB Entry
- www.securitytracker.com/idnvdBroken LinkThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/39743nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.