Arbitrary Code Execution Vulnerability in Blueberry FlashBack ActiveX Control

Arbitrary Code Execution Vulnerability in Blueberry FlashBack ActiveX Control

CVE-2011-1392 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll in Blueberry BB FlashBack, as used in IBM Rational Rhapsody before 7.6.1 and other products, does not properly implement the (1) Start, (2) PauseAndSave, (3) InsertMarker, and (4) InsertSoundToFBRAtMarker methods, which allows remote attackers to execute arbitrary code via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ibm I.