CVE-2010-1525

2010-08-17 22:00:03 2013-02-07 05:30:28

Integer underflow in the SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted size for an unspecified record type, which triggers a heap-based buffer overflow.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Autonomy Keyview export sdk 10.4 (not an official CPE) Autonomy Keyview viewer sdk 10.9 (not an official CPE) Autonomy Keyview filter sdk 10.9 (not an official CPE) Autonomy Keyview viewer sdk 10.4 (not an official CPE) Autonomy Keyview filter sdk 10.4 (not an official CPE) Autonomy Keyview export sdk 10.9 (not an official CPE)

Autonomy - Keyview export sdk Autonomy - Keyview viewer sdk Autonomy - Keyview filter sdk

Advisory	Patch	Confirmed	Link
			http://www.symantec.com/security_response/securityupdate...
			41928
			http://www-01.ibm.com/support/docview.wss?uid=swg2144081...
			http://secunia.com/secunia_research/2010-49/

CVE-2010-1525

2010-08-17 22:00:03 2013-02-07 05:30:28

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)