IBM SPSS SamplePower 'Vsflex8l' ActiveX Control CVE-2012-5945 Buffer Overflow Vulnerability

IBM SPSS SamplePower is prone to a buffer-overflow vulnerability because it fails to properly bounds check the data.

Attackers can exploit this issue to execute arbitrary code within the context of an application (typically Internet Explorer) that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.

IBM SPSS SamplePower 3.0 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus