Lucene search

[email protected]CVE-2010-0133

HistoryAug 17, 2010 - 8:00 p.m.

CVE-2010-0133

2010-08-1720:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-0133

buffer overflow

spreadsheet lotus 123

autonomy keyview

security vulnerability

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.04 Low

EPSS

Percentile

92.1%

JSON

Multiple stack-based buffer overflows in the SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allow remote attackers to execute arbitrary code via unspecified vectors related to “certain records.”

CPENameOperatorVersion
autonomy:keyview_filter_sdkautonomy keyview filter sdkeq10.9
autonomy:keyview_viewer_sdkautonomy keyview viewer sdkeq10.4
autonomy:keyview_filter_sdkautonomy keyview filter sdkeq10.4
autonomy:keyview_export_sdkautonomy keyview export sdkeq10.4
autonomy:keyview_export_sdkautonomy keyview export sdkeq10.9
autonomy:keyview_viewer_sdkautonomy keyview viewer sdkeq10.9

CPE	Name	Operator	Version
autonomy:keyview_filter_sdk	autonomy keyview filter sdk	eq	10.9
autonomy:keyview_viewer_sdk	autonomy keyview viewer sdk	eq	10.4
autonomy:keyview_filter_sdk	autonomy keyview filter sdk	eq	10.4
autonomy:keyview_export_sdk	autonomy keyview export sdk	eq	10.4
autonomy:keyview_export_sdk	autonomy keyview export sdk	eq	10.9
autonomy:keyview_viewer_sdk	autonomy keyview viewer sdk	eq	10.9

References

secunia.com/secunia_research/2010-28/

www-01.ibm.com/support/docview.wss?uid=swg21440812

www.securityfocus.com/bid/41928

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100727_01

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.04 Low

EPSS

Percentile

92.1%

JSON

Related for CVE-2010-0133

prion1 securityvulns2 cvelist1 nessus1