13 matches found
CVE-2008-4564
A stack-based buffer overflow in Autonomy KeyView SDK wp6sr.dll (WordPerfect document parser) allows remote code execution. The CVE-2008-4564 issue affects IBM Lotus Notes (and other products using KeyView), caused by unbounded copying of records into a fixed-size stack buffer when processing WPD...
CVE-2005-2618
CVE-2005-2618 is a buffer overflow affecting IBM/Lotus Notes components, notably the Attachment Viewer UUE handling and the HTML Speed Reader, exploited via specially crafted UUE files, long ZIP/TAR file names, or long links in emails. The root cause is inadequate boundary checking in these viewe...
CVE-2007-5909
CVE-2007-5909 is a buffer overflow vulnerability in Autonomy/Verity KeyView components (l123sr.dll, kpagrdr.dll, awsr.dll, exesr.dll, mwsr.dll, mifsr.dll, lasr.dll, rtfsr.dll) used by Lotus Notes 5.x–8.x. A crafted MIF/RTF/DOC/SAM/AS? attachments to these DLLs could cause a stack-based overflow, ...
CVE-2007-5910
CVE-2007-5910 is a stack-based buffer overflow in Autonomy/Verity KeyView Viewer, Filter, and Export SDK prior to 9.2.0.12, exploited via crafted WordPerfect (WPD) attachments. It impacts Lotus Notes (wp6sr.dll) and other products (ActivePDF DocConverter, etc.), enabling remote code execution. Mi...
CVE-2010-0134
CVE-2010-0134 : A signedness error in Autonomy KeyView’s rtfsr.dll (versions 10.4 and 10.9) allows remote code execution when processing the RTF \ls keyword in a list override table entry, triggering a buffer overflow. Affected products are used in various IBM, Symantec, and other bundles. Impact...
CVE-2010-1525
CVE-2010-1525 affects Autonomy KeyView 10.4 and 10.9, specifically the SpreadSheet Lotus 123 reader (wkssr.dll). The vulnerability is an integer underflow during parsing of a record type size, which can trigger a heap-based buffer overflow. This may lead to a denial of service and potentially arb...
CVE-2005-2619
The CVE-2005-2619 issue affects Lotus Notes (6.5.4 and 7.0) using Autonomy/Verity KeyView SDK kvarcve.dll (pre-9.2.0). The vulnerability arises in the preview generation of archives (ZIP, UUE, TAR) where a filename containing .. can lead to directory traversal and deletion of arbitrary files acce...
CVE-2010-0131
CVE-2010-0131 describes a stack-based buffer overflow in the Spreadsheet Lotus 123 reader (wkssr.dll), affecting Autonomy KeyView 10.4 and 10.9 (and related products). The vulnerability stems from a boundary/float conversion issue in certain record types, enabling remote attackers to execute arbi...
CVE-2010-0133
CVE-2010-0133 involves multiple stack-based and memory corruption vulnerabilities in Autonomy KeyView’s SpreadSheet Lotus 123 reader (wkssr.dll), affecting KeyView 10.4 and 10.9. The flaws arise from boundary/overflow conditions when parsing certain records, allowing remote attackers to execute a...
CVE-2010-0126
CVE-2010-0126 affects Autonomy KeyView 10.4 and 10.9. The vulnerability is a heap-based buffer overflow in a KeyView component/library used by multiple products (e.g., IBM, Symantec) that processes compound documents. An attacker could trigger code execution by supplying a specially crafted compo...
CVE-2010-1524
Autonomy KeyView (SpreadSheet Lotus 123 reader wkssr.dll) is affected in KeyView versions 10.4 and 10.9, where the SpreadSheet parser can trigger memory corruption via allocation of an array of pointers and string indexing, allowing remote code execution. The vulnerability affects software using ...
CVE-2010-0135
CVE-2010-0135 affects Autonomy KeyView’s WordPerfect 5.x reader (wosr.dll). The vulnerability is a heap-based buffer overflow in the data block parsing path, caused by a boundary error when processing data blocks. Impact: remote code execution via crafted files, with affected KeyView versions inc...
CVE-2007-6008
CVE-2007-6008 describes a heap-based buffer overflow in emlsr.dll before version 2.0.0.4 used by Autonomy (Verity) KeyView components (Viewer, Filter, and Export SDK). The flaw allows remote code execution via a long Content-Type header line in an EML file. Affected software is Autonomy/Verity Ke...