Heap-based buffer overflow vulnerability in the Ole API in the CQOle ActiveX control in cqole.dll in IBM Rational ClearQuestID: oval:org.secpod.oval:def:5234 | Date: (C)2012-04-27 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with IBM Rational ClearQuest 7.1.1 before 7.1.1.9 or 7.1.2 before 7.1.2.6 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which is caused by a function prototype mismatch in the RegisterSchemaRepoFromFileByDbSet() function. Successful exploitation allows remote attackers to execute arbitrary code.
Platform: |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Product: |
IBM Rational ClearQuest |