Vulnerability CVE-2011-1512


Published: 2011-05-31   Modified: 2012-02-13

Description:
Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR.

See advisories in our WLB2 database:
Topic
Author
Date
High
Lotus Notes XLS viewer malformed BIFF record heap overflow
CORE
02.06.2011

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

Vendor: IBM
Product: Lotus notes 
Version:
8.5.2.2
8.5.2.1
8.5.2.0
8.5.1.5
8.5.1.4
8.5.1.3
8.5.1.2
8.5.1.1
8.5.1.0
8.5.1
8.5.0.1
8.5.0.0
8.5
8.0.2.6
8.0.2.5
8.0.2.4
8.0.2.3
8.0.2.2
8.0.2.1
8.0.2.0
8.0.2
8.0.1
8.0.0
8.0
7.0.4.2
7.0.4.1
7.0.4.0
7.0.4
7.0.3.1
7.0.3
7.0.2.3
7.0.2.2
7.0.2.1
7.0.2
7.0.1.1
7.0.1
7.0.0
7.0
6.5.6.3
6.5.6.2
6.5.6.1
6.5.6
6.5.5.3
6.5.5.2
6.5.5.1
6.5.5
6.5.4.3
6.5.4.2
6.5.4.1
6.5.4
6.5.3.1
6.5.3
6.5.2
6.5.1
6.5
6.0.5
6.0.4
6.0.3
6.0.2.2
6.0.2
6.0.1
6.0
5.0a
5.02
5.0.9a
5.0.9
5.0.8
5.0.7a
5.0.7
5.0.6a.01
5.0.6a
5.0.6
5.0.5.02
5.0.5.01
5.0.5
5.0.4a
5.0.4
5.0.3
5.0.2c
5.0.2b
5.0.2a
5.0.2
5.0.1c
5.0.1b
5.0.1a
5.0.12
5.0.11
5.0.10
5.0.1.02
5.0.1
5.0
4.6.7h
4.6.7a
4.6
4.5
4.2.2
4.2.1
4.2
3.0.0.2
3.0.0.1
See more versions on NVD

CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9.3/10
10/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://securityreason.com/securityalert/8263
http://www.coresecurity.com/content/LotusNotes-XLS-viewer-heap-overflow
http://www.ibm.com/support/docview.wss?uid=swg21500034
http://www.securityfocus.com/archive/1/518120/100/0/threaded
http://www.securityfocus.com/bid/47962
https://exchange.xforce.ibmcloud.com/vulnerabilities/67619
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14203

Related CVE
CVE-2019-4482
IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disc...
CVE-2019-4437
IBM API Connect 2018.1 through 2018.4.1.6 may inadvertently leak sensitive details about internal servers and network via API swagger. IBM X-force ID: 162947.
CVE-2019-4338
IBM Security Guardium Big Data Intelligence 4.0 (SonarG) does not properly restrict the size or amount of resources that are requested or influenced by an actor. This weakness can be used to consume more resources than intended. IBM X-Force ID: 16141...
CVE-2019-4167
IBM StoredIQ 7.6.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 158700.
CVE-2019-4120
IBM Cloud Private 3.1.1 and 3.1.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a ...
CVE-2019-4484
IBM Emptoris Sourcing 10.1.0 through 10.1.3, IBM Contract Management 10.1.0 through 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 generates an error message that includes sensitive information that could be used in further attacks aga...
CVE-2019-4483
IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or ...
CVE-2019-4481
IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or ...

Copyright 2019, cxsecurity.com

 

Back to Top