Lucene search

[email protected]NVD:CVE-2009-3037

HistorySep 01, 2009 - 4:30 p.m.

CVE-2009-3037

2009-09-0116:30:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.347

Percentile

97.1%

JSON

Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment.

Affected configurations

Nvd

Node

ibmlotus_notesMatch5.0

ibmlotus_notesMatch5.0.1

ibmlotus_notesMatch5.0.2

ibmlotus_notesMatch5.0.3

ibmlotus_notesMatch5.0.4

ibmlotus_notesMatch5.0.5

ibmlotus_notesMatch5.0.6

ibmlotus_notesMatch5.0.9a

ibmlotus_notesMatch5.0.10

ibmlotus_notesMatch5.0.11

ibmlotus_notesMatch5.0.12

ibmlotus_notesMatch5.02

ibmlotus_notesMatch6.0

ibmlotus_notesMatch6.0.1

ibmlotus_notesMatch6.0.2

ibmlotus_notesMatch6.0.3

ibmlotus_notesMatch6.0.4

ibmlotus_notesMatch6.0.5

ibmlotus_notesMatch6.5

ibmlotus_notesMatch6.5.1

ibmlotus_notesMatch6.5.2

ibmlotus_notesMatch6.5.3

ibmlotus_notesMatch6.5.4

ibmlotus_notesMatch6.5.5

ibmlotus_notesMatch6.5.5fp2

ibmlotus_notesMatch6.5.5fp3

ibmlotus_notesMatch6.5.6

ibmlotus_notesMatch6.5.6fp2

ibmlotus_notesMatch7.0

ibmlotus_notesMatch7.0.0

ibmlotus_notesMatch7.0.1

ibmlotus_notesMatch7.0.2

ibmlotus_notesMatch7.0.2fp1

ibmlotus_notesMatch7.0.3

ibmlotus_notesMatch8.0

ibmlotus_notesMatch8.0.0

ibmlotus_notesMatch8.0.1

ibmlotus_notesMatch8.5

symantecbrightmail_applianceMatch5.0

symantecbrightmail_applianceMatch8.0.0

symantecbrightmail_applianceMatch8.0.1

symantecdata_loss_prevention_detection_serversMatch7.2

symantecdata_loss_prevention_detection_serversMatch8.1.1linux

symantecdata_loss_prevention_detection_serversMatch8.1.1windows

symantecdata_loss_prevention_detection_serversMatch9.0.1linux

symantecdata_loss_prevention_detection_serversMatch9.0.1windows

symantecdata_loss_prevention_endpoint_agentsMatch8.1.1

symantecdata_loss_prevention_endpoint_agentsMatch9.0.1

symantecmail_securityMatch5.0smtp

symantecmail_securityMatch5.0.0smtp

symantecmail_securityMatch5.0.1smtp

symantecmail_securityMatch5.0.1.181smtp

symantecmail_securityMatch5.0.1.182smtp

symantecmail_securityMatch5.0.1.189smtp

symantecmail_securityMatch5.0.1.200smtp

symantecmail_securityMatch5.0.10microsoft_exchange

symantecmail_securityMatch5.0.11microsoft_exchange

symantecmail_securityMatch5.0.12microsoft_exchange

symantecmail_securityMatch6.0.6microsoft_exchange

symantecmail_securityMatch6.0.7microsoft_exchange

symantecmail_securityMatch6.0.8microsoft_exchange

symantecmail_securityMatch7.5.3.25domino

symantecmail_securityMatch7.5.4.29domino

symantecmail_securityMatch7.5.5.32domino

symantecmail_securityMatch7.5.6domino

symantecmail_securityMatch8.0domino

symantecmail_security_applianceMatch5.0

symantecmail_security_applianceMatch5.0.0.24

symantecmail_security_applianceMatch5.0.0.36

AND

autonomykeyview

VendorProductVersionCPE
ibmlotus_notes5.0cpe:2.3:a:ibm:lotus_notes:5.0:*:*:*:*:*:*:*
ibmlotus_notes5.0.1cpe:2.3:a:ibm:lotus_notes:5.0.1:*:*:*:*:*:*:*
ibmlotus_notes5.0.2cpe:2.3:a:ibm:lotus_notes:5.0.2:*:*:*:*:*:*:*
ibmlotus_notes5.0.3cpe:2.3:a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:*
ibmlotus_notes5.0.4cpe:2.3:a:ibm:lotus_notes:5.0.4:*:*:*:*:*:*:*
ibmlotus_notes5.0.5cpe:2.3:a:ibm:lotus_notes:5.0.5:*:*:*:*:*:*:*
ibmlotus_notes5.0.6cpe:2.3:a:ibm:lotus_notes:5.0.6:*:*:*:*:*:*:*
ibmlotus_notes5.0.9acpe:2.3:a:ibm:lotus_notes:5.0.9a:*:*:*:*:*:*:*
ibmlotus_notes5.0.10cpe:2.3:a:ibm:lotus_notes:5.0.10:*:*:*:*:*:*:*
ibmlotus_notes5.0.11cpe:2.3:a:ibm:lotus_notes:5.0.11:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	lotus_notes	5.0	cpe:2.3:a:ibm:lotus_notes:5.0:::::::*
ibm	lotus_notes	5.0.1	cpe:2.3:a:ibm:lotus_notes:5.0.1:::::::*
ibm	lotus_notes	5.0.2	cpe:2.3:a:ibm:lotus_notes:5.0.2:::::::*
ibm	lotus_notes	5.0.3	cpe:2.3:a:ibm:lotus_notes:5.0.3:::::::*
ibm	lotus_notes	5.0.4	cpe:2.3:a:ibm:lotus_notes:5.0.4:::::::*
ibm	lotus_notes	5.0.5	cpe:2.3:a:ibm:lotus_notes:5.0.5:::::::*
ibm	lotus_notes	5.0.6	cpe:2.3:a:ibm:lotus_notes:5.0.6:::::::*
ibm	lotus_notes	5.0.9a	cpe:2.3:a:ibm:lotus_notes:5.0.9a:::::::*
ibm	lotus_notes	5.0.10	cpe:2.3:a:ibm:lotus_notes:5.0.10:::::::*
ibm	lotus_notes	5.0.11	cpe:2.3:a:ibm:lotus_notes:5.0.11:::::::*