PT-2010-1949 · Ibm+1 · Spreadsheet Lotus 123+1

Publicado

2010-08-17

Atualizado

2013-02-07

CVE-2010-0133

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Autonomy KeyView versions 10.4 through 10.9

Description The issue is related to multiple stack-based buffer overflows in the SpreadSheet Lotus 123 reader, which can allow remote attackers to execute arbitrary code. The overflows are related to "certain records" in the wkssr.dll file.

Recommendations For Autonomy KeyView versions 10.4 through 10.9, consider disabling the SpreadSheet Lotus 123 reader functionality until a patch is available. Restrict access to the wkssr.dll file to minimize the risk of exploitation.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2010-0133

Produtos afetados

Autonomy Keyview

Spreadsheet Lotus 123

PT-2010-1949 · Ibm+1 · Spreadsheet Lotus 123+1

CVE-2010-0133

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5