Vulnerabilities > IBM > Spss Samplepower

DATE CVE VULNERABILITY TITLE RISK
2014-03-16 CVE-2014-0895 Buffer Errors vulnerability in IBM Spss Samplepower 3.0.1.0
Buffer overflow in the vsflex8l ActiveX control in IBM SPSS SamplePower 3.0.1 before FP1 3.0.1-IM-S3SAMPC-WIN32-FP001-IF02 allows remote attackers to execute arbitrary code via a crafted ComboList property value.
network
low complexity
ibm CWE-119
7.5
7.5
2014-02-01 CVE-2013-6724 Unspecified vulnerability in IBM Spss Samplepower 3.0.1.0
Unspecified vulnerability in the vsflex8l ActiveX control in IBM SPSS SamplePower 3.0.1 before FP1 IF1 allows remote attackers to execute arbitrary code via a crafted ComboList property value.
network
ibm
critical
 9.3
9.3
2013-04-30 CVE-2012-5947 Buffer Errors vulnerability in IBM Spss Samplepower 3.0.0.0
Buffer overflow in the vsflex7l ActiveX control in IBM SPSS SamplePower 3.0 before FP1 allows remote attackers to execute arbitrary code via unspecified vectors.
network
ibm CWE-119
critical
 9.3
9.3
2013-04-30 CVE-2012-5946 Buffer Errors vulnerability in IBM Spss Samplepower 3.0.0.0
Buffer overflow in the c1sizer ActiveX control in C1sizer.ocx in IBM SPSS SamplePower 3.0 before FP1 allows remote attackers to execute arbitrary code via a long TabCaption string.
network
ibm CWE-119
critical
 9.3
9.3
2013-04-30 CVE-2012-5945 Buffer Errors vulnerability in IBM Spss Samplepower 3.0.0.0
Multiple buffer overflows in the Vsflex8l ActiveX control in IBM SPSS SamplePower 3.0 before FP1 allow remote attackers to execute arbitrary code via a long (1) ComboList or (2) ColComboList property value.
network
ibm CWE-119
critical
 9.3
9.3
2013-04-27 CVE-2013-0593 Unspecified vulnerability in IBM Spss Samplepower 3.0.0.0
Unspecified vulnerability in the olch2x32 ActiveX control in IBM SPSS SamplePower 3.0 before 3.0-IM-S3SAMPC-WIN32-FP001 allows remote attackers to execute arbitrary code via unknown vectors.
network
ibm
critical
 9.3
9.3
2012-01-18 CVE-2012-0189 Unspecified vulnerability in IBM Spss Samplepower 3.0
Multiple unspecified vulnerabilities in the (1) PrintFile and (2) SaveDoc methods in the VsVIEW6 ActiveX control in VsVIEW6.ocx in IBM SPSS SamplePower 3.0 allow remote attackers to execute arbitrary code via a crafted HTML document.
network
ibm
critical
 9.3
9.3