Heap-based buffer overflow in the Ole API in the CQOle ActiveX control in cqole.dll in IBM Rational ClearQuest 7.1.1 prior to 7.1.1.9, 7.1.2 prior to 7.1.2.6, and 8.0.0 prior to 8.0.0.2 allows remote malicious users to execute arbitrary code via a crafted web page that leverages a RegisterSchemaRepoFromFileByDbSet function-prototype mismatch.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm rational clearquest 7.1.1.1 |
||
ibm rational clearquest 7.1.1.4 |
||
ibm rational clearquest 7.1.1.3 |
||
ibm rational clearquest 7.1.1.2 |
||
ibm rational clearquest 7.1.1 |
||
ibm rational clearquest 7.1.2.2 |
||
ibm rational clearquest 7.1.2.1 |
||
ibm rational clearquest 7.1.2.6 |
||
ibm rational clearquest 7.1.2 |
||
ibm rational clearquest 7.1.2.3 |
||
ibm rational clearquest 7.1.2.5 |
||
ibm rational clearquest 7.1.2.4 |
||
ibm rational clearquest 8.0.0.1 |
||
ibm rational clearquest 8.0.0 |