Required CVE Record Information
Description
The ActiveBar1 ActiveX control in the Data Dynamics ActiveBar ActiveX controls, as distributed in ActBar.ocx 1.0.6.5 in IBM Rational System Architect 11.4.0.2, 11.4.0.1, and earlier, does not properly restrict the SetLayoutData method, which allows remote attackers to execute arbitrary code via a crafted Data argument, a different vulnerability than CVE-2007-3883. NOTE: some of these details are obtained from third party information.
References 6 Total
- securitytracker.com: 1025464 vdb-entry
- secunia.com: 43474 third-party-advisory
- vupen.com: ADV-2011-1129 vdb-entry
- secunia.com: 43399 third-party-advisory
- securityfocus.com: 47643 vdb-entry
- https://www.ibm.com/support/docview.wss?uid=swg21497689
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- securitytracker.com: 1025464 vdb-entryx_transferred
- secunia.com: 43474 third-party-advisoryx_transferred
- vupen.com: ADV-2011-1129 vdb-entryx_transferred
- secunia.com: 43399 third-party-advisoryx_transferred
- securityfocus.com: 47643 vdb-entryx_transferred
- https://www.ibm.com/support/docview.wss?uid=swg21497689 x_transferred