Heap overflow

🗓️ 31 May 2011 20:55:00Reported by PRIOn knowledge baseType

Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR.

Reporter	Title	Published	Views	Family All 12
Core Security	Lotus Notes XLS viewer malformed BIFF record heap overflow	24 May 201100:00	–	coresecurity
CVE	CVE-2011-1512	31 May 201120:00	–	cve
Cvelist	CVE-2011-1512	31 May 201120:00	–	cvelist
Kaspersky	KLA10202 ACE vulnerabilities in IBM Lotus Notes	31 May 201100:00	–	kaspersky
Tenable Nessus	IBM Lotus Notes Attachment Handling Multiple Buffer Overflows	31 May 201100:00	–	nessus
Tenable Nessus	Symantec Mail Security Autonomy Verity Keyview Filter Vulnerabilities (SYM11-013)	28 Oct 201100:00	–	nessus
NVD	CVE-2011-1512	31 May 201120:55	–	nvd
OpenVAS	IBM Lotus Notes File Viewers Multiple BOF Vulnerabilities - Windows	7 Jun 201100:00	–	openvas
OpenVAS	IBM Lotus Notes File Viewers Multiple BOF Vulnerabilities (Windows)	7 Jun 201100:00	–	openvas
securityvulns	CORE-2010-0908: Lotus Notes XLS viewer malformed BIFF record heap overflow	26 May 201100:00	–	securityvulns

Source	Link
ibm	www.ibm.com/support/docview.wss
securityfocus	www.securityfocus.com/bid/47962
coresecurity	www.coresecurity.com/content/LotusNotes-XLS-viewer-heap-overflow
secunia	www.secunia.com/advisories/44624
securityreason	www.securityreason.com/securityalert/8263
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/67619
oval	www.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14203
securityfocus	www.securityfocus.com/archive/1/518120/100/0/threaded

09 Oct 2018 19:31Current

8.4High risk

Vulners AI Score8.4

EPSS0.21613