CVE-2011-1388 Information

Description

The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll in Blueberry BB FlashBack as used in IBM Rational Rhapsody before 7.6.1 and other products does not properly implement the TestCompatibilityRecordMode method which allows remote attackers to execute arbitrary code via unspecified vectors.

Reference

http://secunia.com/advisories/47286 http://secunia.com/advisories/47310 http://www-01.ibm.com/support/docview.wss?uid=swg21576352 https://exchange.xforce.ibmcloud.com/vulnerabilities/71694