Stack-based Buffer Overflow in Autonomy KeyView SDK for Lotus Notes
CVE-2005-2618

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Notes; Keyview Viewer Sdk; Keyview Export Sdk; Keyview Filter Sdk
Vendor: CVE Published:; 31 December 2005

Summary

The Autonomy KeyView SDK contains multiple stack-based buffer overflow vulnerabilities that can be exploited by remote attackers. These vulnerabilities arise from improper handling of long filenames in various file formats, including UUE, ZIP, TAR archives, and links in emails. Attackers could leverage these flaws to execute arbitrary code, compromising the integrity and security of systems utilizing affected versions of the SDK and Lotus Notes.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24635

vdb-entryx_refsource_XF

http://www-1.ibm.com/support/docview.wss?rs=475&uid=swg21...

x_refsource_CONFIRM

http://secunia.com/secunia_research/2005-34/advisory/

x_refsource_MISC

EPSS Score

49% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 31, 2005
Vulnerability Reserved
Aug 17, 2005