CVE-2010-0134

2010-08-17 22:00:02 2013-02-07 05:27:00

Integer signedness error in rtfsr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via a crafted \ls keyword in a list override table entry in an RTF file, which triggers a buffer overflow.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Autonomy Keyview export sdk 10.4 (not an official CPE) Autonomy Keyview viewer sdk 10.9 (not an official CPE) Autonomy Keyview filter sdk 10.9 (not an official CPE) Autonomy Keyview viewer sdk 10.4 (not an official CPE) Autonomy Keyview filter sdk 10.4 (not an official CPE) Autonomy Keyview export sdk 10.9 (not an official CPE)

Autonomy - Keyview export sdk Autonomy - Keyview viewer sdk Autonomy - Keyview filter sdk

Advisory	Patch	Confirmed	Link
			http://www.symantec.com/security_response/securityupdate...
			41928
			http://www-01.ibm.com/support/docview.wss?uid=swg2144081...
			http://secunia.com/secunia_research/2010-27/

CVE-2010-0134

2010-08-17 22:00:02 2013-02-07 05:27:00

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)