Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.902655
Category:General
Title:IBM Rational Rhapsody BB FlashBack SDK ActiveX Control Remote Code Execution VUlnerabilities
Summary:This host is installed with IBM Rational Rhapsody and is prone to; remote code execution vulnerabilities.
Description:Summary:
This host is installed with IBM Rational Rhapsody and is prone to
remote code execution vulnerabilities.

Vulnerability Insight:
The flaws are due to errors in the BB FlashBack ActiveX control
(BBFlashBack.Recorder.dll) within the FBRecorder class when handling the
'Start()', 'PauseAndSave()', 'InsertMarker()', 'InsertSoundToFBRAtMarker()'
and 'TestCompatibilityRecordMode()' methods.

Vulnerability Impact:
Successful exploitation will allow attacker to execution of arbitrary code.

Affected Software/OS:
IBM Rational Rhapsody version prior to 7.6.1.

Solution:
Upgrade to IBM Rational Rhapsody versions 7.6.1 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 51184
Common Vulnerability Exposure (CVE) ID: CVE-2011-1388
http://secunia.com/advisories/47286
http://secunia.com/advisories/47310
XForce ISS Database: rr-bcf-code-execution(71694)
https://exchange.xforce.ibmcloud.com/vulnerabilities/71694
Common Vulnerability Exposure (CVE) ID: CVE-2011-1391
XForce ISS Database: irr-bbf-code-execution(71803)
https://exchange.xforce.ibmcloud.com/vulnerabilities/71803
Common Vulnerability Exposure (CVE) ID: CVE-2011-1392
XForce ISS Database: ibm-ratth-bbfb-code-execution(71804)
https://exchange.xforce.ibmcloud.com/vulnerabilities/71804
CopyrightCopyright (C) 2011 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.