1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: IBM SPSS SamplePower 3.0 CVE-2012-5946 2

Web Attack: IBM SPSS SamplePower 3.0 CVE-2012-5946 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in IBM SPSS SamplePower which could result in remote code execution

Additional Information

IBM SPSS SamplePower is a business analytics application.

The application is prone to a buffer-overflow vulnerability because it fails to properly bounds check the data by the 'c1sizer' ActiveX control. Specifically, the issue occurs due to an error when handling the 'TabCaption' buffer.

The ActiveX control identified by CLSID:

24E04EBF-014D-471F-930E-7654B1193BA9

Attackers can exploit this issue to execute arbitrary code within the context of an application (typically Internet Explorer) that uses the ActiveX control. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • IBM SPSS SamplePower 3.0 is vulnerable; other versions may also be affected.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube