CVE-2007-6008

CVE-2007-6008 describes a heap-based buffer overflow in emlsr.dll before version 2.0.0.4 used by Autonomy (Verity) KeyView components (Viewer, Filter, and Export SDK). The flaw allows remote code execution via a long Content-Type header line in an EML file. Affected software is Autonomy/Verity Ke...

CVE-2007-6008

Heap-based buffer overflow in emlsr.dll before 2.0.0.4 in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK allows remote attackers to execute arbitrary code via a long Content-Type header line in an EML file. NOTE: the provenance of this information is unknown; the details are...

Stack overflow

Multiple stack-based buffer overflows in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, IBM Lotus Notes before 7.0.3, Symantec Mail Security, and other products, allow remote attackers to execute arbitrary code via a crafted 1 A...

CVE-2007-5909

Multiple stack-based buffer overflows in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, IBM Lotus Notes before 7.0.3, Symantec Mail Security, and other products, allow remote attackers to execute arbitrary code via a crafted 1 A...

Stack overflow

Stack-based buffer overflow in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, wp6sr.dll in IBM Lotus Notes 8.0 and before 7.0.3, Symantec Mail Security, and other products, allows remote attackers to execute arbitrary code via a...

CVE-2007-5910

Stack-based buffer overflow in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, wp6sr.dll in IBM Lotus Notes 8.0 and before 7.0.3, Symantec Mail Security, and other products, allows remote attackers to execute arbitrary code via a...

CVE-2007-5910

Stack-based buffer overflow in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, wp6sr.dll in IBM Lotus Notes 8.0 and before 7.0.3, Symantec Mail Security, and other products, allows remote attackers to execute arbitrary code via a...

CVE-2007-5910

CVE-2007-5910 is a stack-based buffer overflow in Autonomy/Verity KeyView Viewer, Filter, and Export SDK prior to 9.2.0.12, exploited via crafted WordPerfect (WPD) attachments. It impacts Lotus Notes (wp6sr.dll) and other products (ActivePDF DocConverter, etc.), enabling remote code execution. Mi...

CVE-2007-5909

CVE-2007-5909 is a buffer overflow vulnerability in Autonomy/Verity KeyView components (l123sr.dll, kpagrdr.dll, awsr.dll, exesr.dll, mwsr.dll, mifsr.dll, lasr.dll, rtfsr.dll) used by Lotus Notes 5.x–8.x. A crafted MIF/RTF/DOC/SAM/AS? attachments to these DLLs could cause a stack-based overflow, ...

CVE-2007-5909

Multiple stack-based buffer overflows in Autonomy formerly Verity KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, IBM Lotus Notes before 7.0.3, Symantec Mail Security, and other products, allow remote attackers to execute arbitrary code via a crafted 1 A...

Verity KeyView SDK / Lotus Notes multiple buffer overflows

Buffer overflows on parsing .mif, .aw, .rtf, .exe, .dll, .ag, .doc...

ZDI-07-059: Verity KeyView SDK Multiple File Format Parsing Vulnerabilities

ZDI-07-059: Verity KeyView SDK Multiple File Format Parsing Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-07-059.html October 23, 2007 -- CVE ID: -- Affected Vendor: Verity -- Affected Products: KeyView SDK -- Vulnerability Details: Several vulnerabilities exist in the popular...

Symantec Mail Security KeyView Module Multiple Buffer Overflow

SUMMARY Multiple buffer overflow vulnerabilities have been identified in the Autonomy KeyView module used in Symantecs Mail Security products. Severity Medium Remote Access | Yes ---|--- Local Access | No Authentication Required | No Exploit publicly available | Yes AFFECTED PRODUCTS Product |...

Verity KeyView SDK Multiple File Format Parsing Vulnerabilities

Several vulnerabilities exist in the popular Verity KeyView SDK used in many enterprise applications like IBM Lotus Notes. When parsing several different file formats a standard stack overflow occurs allowing a malicious user to gain complete control of the affected machine under the rights of th...

CVE-2005-2619

Directory traversal vulnerability in kvarcve.dll in Autonomy formerly Verity KeyView SDK before 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allows remote attackers to delete arbitrary files via a 1 ZIP, 2 UUE or 3 TAR archive that contains a .. dot dot in the filename, which is not properly...

CVE-2005-2618

Multiple stack-based buffer overflows in Autonomy formerly Verity KeyView SDK before 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allow remote attackers to execute arbitrary code via 1 a UUE file containing an encoded file with a long filename handled by uudrdr.dll, 2 a compressed ZIP file with a...

CVE-2005-2619

The CVE-2005-2619 issue affects Lotus Notes (6.5.4 and 7.0) using Autonomy/Verity KeyView SDK kvarcve.dll (pre-9.2.0). The vulnerability arises in the preview generation of archives (ZIP, UUE, TAR) where a filename containing .. can lead to directory traversal and deletion of arbitrary files acce...

Lotus Notes < 6.5.5 / 7.0.1 Attachment Handling Vulnerabilities

The version of Lotus Notes installed on the remote host reportedly contains five buffer overflow vulnerabilities and one directory traversal vulnerability in the KeyView viewers used to handle message attachments. By sending specially crafted attachments to users of the affected application and...

CVE-2005-2618

CVE-2005-2618 is a buffer overflow affecting IBM/Lotus Notes components, notably the Attachment Viewer UUE handling and the HTML Speed Reader, exploited via specially crafted UUE files, long ZIP/TAR file names, or long links in emails. The root cause is inadequate boundary checking in these viewe...

[SA16100] Verity KeyView Viewer SDK Multiple Vulnerabilities

TITLE: Verity KeyView Viewer SDK Multiple Vulnerabilities SECUNIA ADVISORY ID: SA16100 VERIFY ADVISORY: http://secunia.com/advisories/16100/ CRITICAL: Highly critical IMPACT: Security Bypass, System access WHERE: From remote SOFTWARE: Verity KeyView Viewing SDK http://secunia.com/product/5570/...