Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5909

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2007-5909
Last Modified 07 Mar 2011 10:01:29
Published 09 Nov 2007 09:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5909

Summary

Multiple stack-based buffer overflows in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, IBM Lotus Notes before 7.0.3, Symantec Mail Security, and other products, allow remote attackers to execute arbitrary code via a crafted (1) AG file to kpagrdr.dll, (2) AW file to awsr.dll, (3) DLL or (4) EXE file to exesr.dll, (5) DOC file to mwsr.dll, (6) MIF file to mifsr.dll, (7) SAM file to lasr.dll, or (8) RTF file to rtfsr.dll. NOTE: the WPD (wp6sr.dll) vector is covered by CVE-2007-5910.

Vulnerable Systems

Application

  • Activepdf Docconverter 3.8.2 .5

  • Autonomy Keyview Export Sdk 9.2.0

  • Autonomy Keyview Filter Sdk 9.2.0

  • Autonomy Keyview Viewer Sdk 9.2.0

  • Ibm Lotus Notes 7.0.2

  • Symantec Mail Security 5.0

  • Symantec Mail Security 5.0.0

  • Symantec Mail Security 5.0.0.24

  • Symantec Mail Security 5.0.1

  • Symantec Mail Security 7.5


References

BID - 26175

SECUNIA - 27304

MISC - http://www.zerodayinitiative.com/advisories/ZDI-07-059.html

VUPEN - ADV-2007-3697

VUPEN - ADV-2007-3596

BUGTRAQ - 20071031 ZDI-07-059: Verity KeyView SDK Multiple File Format Parsing Vulnerabilities

BUGTRAQ - 20071023 [vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities

CONFIRM - http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21272836

CONFIRM - http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111

MISC - http://vuln.sg/lotusnotes702sam-en.html

MISC - http://vuln.sg/lotusnotes702mif-en.html

MISC - http://vuln.sg/lotusnotes702doc-en.html

MISC - http://vuln.sg/lotusnotes702-en.html

SECTRACK - 1018886

SECTRACK - 1018853

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2007.11.01c.html

SREASON - 3357


Last Updated: 27 May 2016 10:46:18