ActiveX Control Vulnerability in IBM SPSS Statistics Software
CVE-2015-0140

Currently unrated

Key Information:

Vendor: IBM
Status: Spss Statistics
Vendor: CVE Published:; 25 May 2015

Summary

An identified vulnerability exists within an ActiveX control in IBM SPSS Statistics versions 22.0 through FP1 on 32-bit platforms. This flaw allows remote attackers to execute arbitrary code by using a specially crafted HTML document, leading to potential unauthorized system access.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21697746

x_refsource_CONFIRM

Timeline

Vulnerability published
May 25, 2015
Vulnerability Reserved
Nov 18, 2014