Lucene search
SAINT CorporationSAINT:1BF53258100748BCCEE363A77F48F4C2HistoryJun 06, 2008 - 12:00 a.m.
Lotus Notes Applix Graphics viewer BEGIN tag buffer overflow
2008-06-0600:00:00
SAINT Corporation
www.saintcorporation.com
10
0.913 High
EPSS
Percentile
98.6%
Added: 06/06/2008
CVE: CVE-2007-5405
BID: 28454
OSVDB: 44194
Background
Lotus Notes is the client for Lotus Domino servers. Lotus Notes uses the Autonomy KeyView library to display Applix Graphics (**.ag**) attachments.
Problem
A buffer overflow vulnerability when parsing the initial BEGIN tag in an Applix Graphics file allows command execution when a user opens a specially crafted attachment.
Resolution
Apply the fix referenced in the IBM Technote.
References
<http://secunia.com/secunia_research/2007-96/advisory/>
Limitations
Exploit works on Lotus Notes 8.0 and requires a user to open an e-mail attachment using the affected software.
Platforms
Windows
Related
checkpoint_advisories
checkpoint_advisories
IBM Lotus Notes Applix Graphics Parsing Buffer Overflow (CVE-2007-5405)
2010-07-27 00:00:00
saint
saint
Lotus Notes Applix Graphics viewer BEGIN tag buffer overflow
2008-06-06 00:00:00
Lotus Notes Applix Graphics viewer BEGIN tag buffer overflow
2008-06-06 00:00:00
Lotus Notes Applix Graphics viewer BEGIN tag buffer overflow
2008-06-06 00:00:00
prion
prion
Buffer overflow
2008-04-10 18:05:00
cve
cve
CVE-2007-5405
2008-04-10 18:05:00
cvelist
cvelist
CVE-2007-5405
2008-04-10 18:00:00
securityvulns
securityvulns
nessus
nessus