Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0895

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-0895
Last Modified 11 Mar 2015 09:59:09
Published 16 Mar 2014 10:06:45
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-0895

Summary

Buffer overflow in the vsflex8l ActiveX control in IBM SPSS SamplePower 3.0.1 before FP1 3.0.1-IM-S3SAMPC-WIN32-FP001-IF02 allows remote attackers to execute arbitrary code via a crafted ComboList property value.

Vulnerable Systems

Application

  • Ibm Spss Samplepower 3.0.1.0


References

XF - ibm-spss-cve20140895-code-exec(91314)

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg21666790

AIXAPAR - PI09800

CONFIRM - http://www.solarwinds.com/documentation/orion/docs/releasenotes/releasenotes.htm


Last Updated: 27 May 2016 11:08:01