Arbitrary Code Execution Vulnerability in Blueberry BB FlashBack

Arbitrary Code Execution Vulnerability in Blueberry BB FlashBack

CVE-2011-1391 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll in Blueberry BB FlashBack, as used in IBM Rational Rhapsody before 7.6.1 and other products, does not properly implement the InsertMarker method, which allows remote attackers to execute arbitrary code via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ibm I.