1403504 - Crystal Reports RDC merge modules has vulnerability in the component Gdiplus.dll

SAP Knowledge Base Article - Public

1403504 - Crystal Reports RDC merge modules has vulnerability in the component Gdiplus.dll

Symptom

Crystal Reports RDC merge modules has vulnerability in the component Gdiplus.dll.

Environment

Crystal Reports XI R2

Cause

Resolution

  1. The gdiplus.dll provided by Business Objects needs to be replaced with the patched version from Microsoft.
  2. Patch operating system according to the instructions in the security bulletin above.
  3. Make a backup copy of the gdiplus.dll in the Business Objects directory. Generally found in the \bin folder under C:\Program Files\Business Objects\. Use the search function to find it. 
  4. Find the updated copy of gdiplus.dll in the system32 directory, and copy it to the Business Objects \bin directory.

Note: This is a known issue and will not be patched by Business Objects. Use the above steps to fix the issue.

Keywords

RDC merge modules, gdiplus, vb6 , KBA , BI-DEV , Business Intelligence Software Development Kits (SDKs) , Problem

Product

SAP Crystal Reports XI R2