Vulnerability Details : CVE-2012-0189
Multiple unspecified vulnerabilities in the (1) PrintFile and (2) SaveDoc methods in the VsVIEW6 ActiveX control in VsVIEW6.ocx in IBM SPSS SamplePower 3.0 allow remote attackers to execute arbitrary code via a crafted HTML document.
Vulnerability category: Execute code
Exploit prediction scoring system (EPSS) score for CVE-2012-0189
Probability of exploitation activity in the next 30 days: 89.29%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 99 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2012-0189
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
References for CVE-2012-0189
-
http://www.ibm.com/support/docview.wss?uid=swg21577951
IBM notice: The page you requested cannot be displayedVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/72119
IBM SPSS SamplePower (VsVIEW6.ocx) ActiveX control code execution CVE-2012-0189 Vulnerability Report
Products affected by CVE-2012-0189
- cpe:2.3:a:ibm:spss_samplepower:3.0:*:*:*:*:*:*:*