Description
Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file.
Affected products
- Autonomy / keyview_export_sdk10.4
- Autonomy / keyview_export_sdk2.0 – 2.0
- Autonomy / keyview_export_sdk9.2.0 – 9.2.0
- Autonomy / keyview_export_sdk10 – 10
- Autonomy / keyview_export_sdk10.3 – 10.3
- Autonomy / keyview_filter_sdk10.4
- Autonomy / keyview_filter_sdk2.0 – 2.0
- Autonomy / keyview_filter_sdk9.2.0 – 9.2.0
- Autonomy / keyview_filter_sdk10 – 10
- Autonomy / keyview_filter_sdk10.3 – 10.3
- Autonomy / keyview_viewer_sdk10.4
- Autonomy / keyview_viewer_sdk2.0 – 2.0
- Autonomy / keyview_viewer_sdk9.2.0 – 9.2.0
- Autonomy / keyview_viewer_sdk10 – 10
- Autonomy / keyview_viewer_sdk10.3 – 10.3
- ibm / lotus_notes5.0.3 – 5.0.3
- ibm / lotus_notes5.0.12 – 5.0.12
- ibm / lotus_notes6.0 – 6.0
- ibm / lotus_notes6.0.1 – 6.0.1
- ibm / lotus_notes6.0.2 – 6.0.2
- ibm / lotus_notes6.0.3 – 6.0.3
- ibm / lotus_notes6.0.4 – 6.0.4
- ibm / lotus_notes6.0.5 – 6.0.5
- ibm / lotus_notes6.5 – 6.5
- ibm / lotus_notes6.5.1 – 6.5.1
- ibm / lotus_notes6.5.2 – 6.5.2
- ibm / lotus_notes6.5.3 – 6.5.3
- ibm / lotus_notes6.5.4 – 6.5.4
- ibm / lotus_notes6.5.5 – 6.5.5
- ibm / lotus_notes6.5.5 – 6.5.5
- ibm / lotus_notes6.5.5 – 6.5.5
- ibm / lotus_notes6.5.6 – 6.5.6
- ibm / lotus_notes6.5.6 – 6.5.6
- ibm / lotus_notes7.0 – 7.0
- ibm / lotus_notes7.0.1 – 7.0.1
- ibm / lotus_notes7.0.2 – 7.0.2
- ibm / lotus_notes7.0.2 – 7.0.2
- ibm / lotus_notes7.0.3 – 7.0.3
- ibm / lotus_notes8.0 – 8.0
- Symantec / altiris_deployment_solution
- Symantec / brightmail5.0 – 5.0
- Symantec / data_loss_prevention_detection_servers7.0 – 7.0
- Symantec / data_loss_prevention_detection_servers8.0 – 8.0
- Symantec / data_loss_prevention_detection_servers8.1 – 8.1
- Symantec / data_loss_prevention_detection_servers8.1 – 8.1
- Symantec / data_loss_prevention_endpoint_agents8.0 – 8.0
- Symantec / data_loss_prevention_endpoint_agents8.1 – 8.1
- Symantec / enforce7.0 – 7.0
- Symantec / enforce8.0 – 8.0
- Symantec / enforce8.1 – 8.1
- Symantec / enforce8.1 – 8.1
- Symantec / mail_security5.0 – 5.0
- Symantec / mail_security5.0.0 – 5.0.0
- Symantec / mail_security5.0.0 – 5.0.0
- Symantec / mail_security5.0.0.24 – 5.0.0.24
- Symantec / mail_security5.0.1 – 5.0.1
- Symantec / mail_security5.0.1.181 – 5.0.1.181
- Symantec / mail_security5.0.1.182 – 5.0.1.182
- Symantec / mail_security5.0.1.189 – 5.0.1.189
- Symantec / mail_security5.0.1.200 – 5.0.1.200
- Symantec / mail_security5.0.10 – 5.0.10
- Symantec / mail_security5.0.11 – 5.0.11
- Symantec / mail_security6.0.6 – 6.0.6
- Symantec / mail_security6.0.7 – 6.0.7
- Symantec / mail_security7.5..4.29 – 7.5..4.29
- Symantec / mail_security7.5.3.25 – 7.5.3.25
- Symantec / mail_security7.5.5.32 – 7.5.5.32
References
- MISChttp://www.symantec.com/avcenter/security/Content/2009.03.17a.html
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0744
- VENDOR_ADVISORYhttp://secunia.com/advisories/34303
- MISChttp://www.securitytracker.com/id?1021859
- VENDOR_ADVISORYhttp://secunia.com/advisories/34307
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/49284
- MISChttp://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21377573
- VENDOR_ADVISORYhttp://secunia.com/advisories/34318
- MISChttp://securitytracker.com/id?1021856
- MISChttp://securitytracker.com/id?1021857
- MISChttp://www.kb.cert.org/vuls/id/276563
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0756
- MISChttps://customers.autonomy.com/support/secure/docs/Updates/Keyview/Filter%20SDK/10.4/kv_update_nti40_10.4.zip.readme.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/34355
- MISChttp://osvdb.org/52713
- MISChttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=774
- MISChttp://www.securityfocus.com/bid/34086
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0757