Security Vulnerability for ActiveX Control packaged with IBM Cognos Disclosure Management Client (CVE-2013-0501)
A third party ActiveX control (EdrawSoft) may have been registered in the Windows registry by the CDM client installation process. This ActiveX control contains a security vulnerability that could allow unauthorized file access to the user’s machine from malicious web sites.
Affected product(s) & Affected version(s):
IBM Cognos Disclosure Management 10.2.0
Refer to the following reference URLs for remediation and additional vulnerability details.