1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: IBM SPSS SamplePower 3.0 CVE-2012-5946

Web Attack: IBM SPSS SamplePower 3.0 CVE-2012-5946

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects attempts to exploit a buffer overflow vulnerability in IBM SPSS SamplePower which could result in remote code execution

Additional Information

IBM SPSS SamplePower is a business analytics application.

The application is prone to a buffer-overflow vulnerability because it fails to properly bounds check the data by the 'c1sizer' ActiveX control. Specifically, the issue occurs due to an error when handling the 'TabCaption' buffer.

The ActiveX control identified by CLSID:


Attackers can exploit this issue to execute arbitrary code within the context of an application (typically Internet Explorer) that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.


  • IBM SPSS SamplePower 3.0 is vulnerable; other versions may also be affected.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube