PT-2012-2386 · Ibm · Ibm Spss Data Collection+1

Publicado

2012-01-18

Atualizado

2017-08-29

CVE-2012-0188

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM SPSS Dimensions version 5.5 IBM SPSS Data Collection versions 5.6 through 6.0.1

Description The issue allows remote attackers to execute arbitrary code via a crafted HTML document, exploiting an unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll.

Recommendations For IBM SPSS Dimensions version 5.5, update to a version that fixes the SetLicenseInfoEx method vulnerability in the mraboutb.dll ActiveX control. For IBM SPSS Data Collection versions 5.6 through 6.0.1, update to a version that fixes the SetLicenseInfoEx method vulnerability in the mraboutb.dll ActiveX control.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2012-0188

ZDI-12-019

Produtos afetados

Ibm Spss Data Collection

Ibm Spss Dimensions

PT-2012-2386 · Ibm · Ibm Spss Data Collection+1

CVE-2012-0188

Identificadores relacionados

Produtos afetados

Referências · 6