This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects an attempt to exploit a heap buffer overflow vulnerability in IBM Rational ClearQuest.
IBM Rational ClearQuest is an application for managing software development.
The IBM Rational ClearQuest ActiveX control is prone to a heap-based buffer-overflow vulnerability. Specifically, this issue occurs by a function prototype mismatch in the 'RegisterSchemaRepoFromFileByDbSet()' function of the 'cqole.dll' file.
An attacker can exploit this issue to execute arbitrary code in the context of the application, typically Internet Explorer, that uses the ActiveX control. Failed attacks will likely cause denial-of-service conditions.
IBM Rational ClearQuest versions 8.0, 184.108.40.206 and 7.1.1 through 220.127.116.11 are vulnerable.
- IBM IBM Rational ClearQuest 7.1.1
- IBM IBM Rational ClearQuest 18.104.22.168
- IBM IBM Rational ClearQuest 8.0
- IBM IBM Rational ClearQuest 22.214.171.124