Security Bulletin: IBM SPSS SamplePower c1sizer ActiveX control vulnerability (CVE-2012-5946)
There is a security vulnerability with the c1sizer ActiveX control shipped by IBM SPSS SamplePower Version 3. The vulnerability allow remote attackers to execute arbitrary code on installations of SamplePower when the control is invoked as ActiveX by Microsoft Internet Explorer.
Affected product(s) & Affected version(s):
IBM SPSS SamplePower for Windows V3.0
Refer to the following reference URLs for remediation and additional vulnerability details.