2 matches found
Design/Logic Flaw
Unspecified vulnerability in the SetLicenseInfoEx method in an ActiveX control in mraboutb.dll in IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, and 6.0.1 allows remote attackers to execute arbitrary code via a crafted HTML document...
CVE-2012-0190
CVE-2012-0190 concerns an RCE in the IBM SPSS ExportHTML.dll ActiveX control (Render method) used by IBM SPSS Dimensions 5.5 and SPSS Data Collection 5.6, 6.0, 6.0.1. The flaw exists in the Render() method of the ExportHTML.ocx/ExportHTML.dll; a crafted HTML document can cause arbitrary file crea...