IBM has issued an advisory warning of "multiple high risk security vulnerabilities" in its Rational Rhapsody development environment that could allow an attacker to execute arbitrary code.
"In a security bulletin, IBM said that an attacker could compromise the Blueberry FlashBack ActiveX control used in Rational Rhapsody for Windows V7.6 and earlier versions to execute arbitrary code remotely by instantiating the control from the Internet Explorer (IE) browser," Infosecurity reports.
"The company stressed that the user does not have to use Rational Rhapsody continuously for the vulnerabilities to be exploited," the article states.
Go to "IBM warns about high-risk flaws in Rational Rhapsody software development product" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.