CVE-2012-0188

Currently unrated

Key Information:

Vendor: IBM
Status: Spss Data Collection; Spss Dimensions
Vendor: CVE Published:; 18 January 2012

Summary

Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document.

References

http://secunia.com/advisories/47565

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/72118

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21577956

x_refsource_CONFIRM

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 18, 2012
Vulnerability Reserved
Dec 14, 2011