The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Vulnerability of SPSS Data Collection: code execution via ActiveX

Synthesis of the vulnerability

An attacker can use two vulnerabilities of ActiveX installed with IBM SPSS Data Collection, in order to execute code on user's computers.
Severity of this announce: 2/4.
Number of vulnerabilities in this bulletin: 3.
Creation date: 17/01/2012.
Références of this computer vulnerability: 72118, 72121, BID-51445, CVE-2012-0188, CVE-2012-0189, CVE-2012-0190, spss-mraboutb-activex-code-execution, spss-wxporthtml-activex-code-execution, VIGILANCE-VUL-11293, ZDI-12-019, ZDI-12-020, ZDI-12-026, ZDI-12-027.

Description of the vulnerability

The IBM SPSS Data Collection product installs the mraboutb.dll and ExportHTML.dll/ocx ActiveX in the web browser of users. These ActiveX can then be called when the user browses a web site which loads them. However, two vulnerabilities were announced in these ActiveX.

An attacker can generate a buffer overflow in the first parameter of the SetLicenseInfoEx() method of the mraboutb.dll ActiveX, in order to execute code. [severity:2/4; 72118, CVE-2012-0188, spss-mraboutb-activex-code-execution, ZDI-12-019]

An attacker can use the Render() method of the ExportHTML.ocx/dll ActiveX, in order to execute code. [severity:2/4; 72121, CVE-2012-0190, spss-wxporthtml-activex-code-execution, ZDI-12-026]

The ActiveX VsVIEW6 of the product IBM SPSS SamplePower can also be used to execute code. [severity:2/4; CVE-2012-0189, ZDI-12-020, ZDI-12-027]

An attacker can therefore use two vulnerabilities of ActiveX installed with IBM SPSS Data Collection, in order to execute code on user's computers.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This threat impacts software or systems such as SPSS Data Collection.

Our Vigil@nce team determined that the severity of this computer threat is medium.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 3 vulnerabilities.

An attacker with a expert ability can exploit this cybersecurity bulletin.

Solutions for this threat

SPSS Data Collection: Interim Fix.
The following versions are corrected:
  SPSS Data Collection 6.0.1 GA Interim fix 9
  SPSS Data Collection 6.0 Fix Pack 2 Interim fix 10
  SPSS Data Collection 6.0 Fix Pack 2 Interim fix 11
  SPSS Data Collection 5.6 Fix Pack 6 Interim fix 1
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a software vulnerability note. The technology watch team tracks security threats targeting the computer system.