CVE-2012-0188

EUVD-2012-0226
Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
ibmspss_data_collection
5.6
ibmspss_data_collection
6.0
ibmspss_data_collection
6.0.1
ibmspss_dimensions
5.5
𝑥
= Vulnerable software versions
References
http://osvdb.org/78329
http://secunia.com/advisories/47565
http://www-01.ibm.com/support/docview.wss?uid=swg21577956
https://exchange.xforce.ibmcloud.com/vulnerabilities/72118
http://osvdb.org/78329
http://secunia.com/advisories/47565
http://www-01.ibm.com/support/docview.wss?uid=swg21577956
https://exchange.xforce.ibmcloud.com/vulnerabilities/72118