IBM Rational ClearQuest 'cqole.dll' ActiveX 控件堆缓冲区溢出漏洞(CVE-2012-0708)

BUGTRAQ ID: 53170 CVE ID: CVE-2012-0708 IBM Rational ClearQuest是全面的软件变更、追踪管理解决方案。 IBM Rational ClearQuest 版本8.0, 8.0.0.1和7.1.1至7.1.2.5中的cqole.dll内CQOle ActiveX控件中的Ole API存在堆缓冲区溢出漏洞，通过RegisterSchemaRepoFromFileByDbSet函数原型错配恶意制作的网页可导致攻击者利用此漏洞执行任意代码。 0 IBM Rational ClearQuest 8.0.0.1 IBM Rational...

Heap overflow

Heap-based buffer overflow in the Ole API in the CQOle ActiveX control in cqole.dll in IBM Rational ClearQuest 7.1.1 before 7.1.1.9, 7.1.2 before 7.1.2.6, and 8.0.0 before 8.0.0.2 allows remote attackers to execute arbitrary code via a crafted web page that leverages a...