Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-1392

Опубликовано: 23 дек. 2011
Источник: nvd
CVSS2: 9.3
EPSS Низкий

Описание

The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll in Blueberry BB FlashBack, as used in IBM Rational Rhapsody before 7.6.1 and other products, does not properly implement the (1) Start, (2) PauseAndSave, (3) InsertMarker, and (4) InsertSoundToFBRAtMarker methods, which allows remote attackers to execute arbitrary code via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:.bbsoftware:bb_flashback:*:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:ibm:rational_rhapsody:*:*:*:*:*:*:*:*
Версия до 7.6.0.1 (включая)
cpe:2.3:a:ibm:rational_rhapsody:7.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.5.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_rhapsody:7.6:*:*:*:*:*:*:*

EPSS

Процентиль: 85%
0.0254
Низкий

9.3 Critical

CVSS2

Дефекты

CWE-94

Связанные уязвимости

github логотип

GHSA-28wv-3g38-px4r

github
больше 3 лет назад

The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll in Blueberry BB FlashBack, as used in IBM Rational Rhapsody before 7.6.1 and other products, does not properly implement the (1) Start, (2) PauseAndSave, (3) InsertMarker, and (4) InsertSoundToFBRAtMarker methods, which allows remote attackers to execute arbitrary code via unspecified vectors.

EPSS

Процентиль: 85%
0.0254
Низкий

9.3 Critical

CVSS2

Дефекты

CWE-94