Vulnerability CVE-2008-4564


Published: 2009-03-18   Modified: 2012-02-12

Description:
Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file.

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

Vendor: Autonomy
Product: Keyview viewer sdk 
Version:
9.2.0
2.0
10.4
10.3
10
Product: Keyview filter sdk 
Version:
9.2.0
2.0
10.4
10.3
10
Product: Keyview export sdk 
Version:
9.2.0
2.0
10.4
10.3
10
Vendor: Symantec
Product: Enforce 
Version:
8.1
8.0
7.0
Product: Data loss prevention detection servers 
Version:
8.1
8.0
7.0
Product: Data loss prevention endpoint agents 
Version: 8.1; 8.0;
Product: Mail security 
Version:
7.5.5.32
7.5.3.25
7.5..4.29
6.0.7
6.0.6
5.0.11
5.0.10
5.0.1.200
5.0.1.189
5.0.1.182
5.0.1.181
5.0.1
5.0.0.24
5.0.0
5.0
Product: Brightmail 
Version: 5.0;
Product: Altiris deployment solution 
Vendor: IBM
Product: Lotus notes 
Version:
8.0
7.0.3
7.0.2
7.0.1
7.0
6.5.6
6.5.5
6.5.4
6.5.3
6.5.2
6.5.1
6.5
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0
5.0.3
5.0.12

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://www.kb.cert.org/vuls/id/276563
https://customers.autonomy.com/support/secure/docs/Updates/Keyview/Filter%20SDK/10.4/kv_update_nti40_10.4.zip.readme.html
http://xforce.iss.net/xforce/xfdb/49284
http://xforce.iss.net/xforce/xfdb/49284
http://www.vupen.com/english/advisories/2009/0757
http://www.vupen.com/english/advisories/2009/0756
http://www.vupen.com/english/advisories/2009/0744
http://www.symantec.com/avcenter/security/Content/2009.03.17a.html
http://www.securitytracker.com/id?1021859
http://www.securityfocus.com/bid/34086
http://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21377573
http://securitytracker.com/id?1021857
http://securitytracker.com/id?1021856
http://secunia.com/advisories/34355
http://secunia.com/advisories/34318
http://secunia.com/advisories/34307
http://secunia.com/advisories/34303
http://osvdb.org/52713
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=774

Related CVE
CVE-2019-4430
IBM Maximo Asset Management 7.6 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 1...
CVE-2019-4211
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a truste...
CVE-2019-4194
IBM Jazz for Service Management 1.1.3, 1.1.3.1, and 1.1.3.2 is missing function level access control that could allow a user to delete authorized resources. IBM X-Force ID: 159033.
CVE-2019-4054
IBM QRadar SIEM 7.2 and 7.3 could allow a local user to obtain sensitive information when exporting content that could aid an attacker in further attacks against the system. IBM X-Force ID: 156563.
CVE-2018-2022
IBM QRadar SIEM 7.2 and 7.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 155346.
CVE-2018-2021
IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a truste...
CVE-2018-1921
IBM Campaign 9.1.0, 9.1.2, 10.1, and 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure w...
CVE-2019-4263
IBM Content Navigator 3.0CD is vulnerable to local file inclusion, allowing an attacker to access a configuration file in the ICN server. IBM X-Force ID: 160015.

Copyright 2019, cxsecurity.com

 

Back to Top