CVE-2007-5405

Name of the Vulnerable Software and Affected Versions Autonomy KeyView versions 2.0.0.2 through 10.3.0.0

Description The issue concerns multiple buffer overflows in the kpagrdr.dll component of Autonomy KeyView, which is used by various software products. These buffer overflows can be triggered by a specially crafted .ag file containing specific elements, such as a long ENCODING attribute in a *BEGIN tag, a long token, or the initial *BEGIN tag. This could potentially allow remote attackers to execute arbitrary code.

Recommendations For Autonomy KeyView versions 2.0.0.2 through 10.3.0.0, consider restricting the handling of .ag files or disabling the kpagrdr.dll component until a patch is available. Avoid using the affected Applix Presents reader in Autonomy KeyView to minimize the risk of exploitation.