Buffer Overflow Vulnerability in Applix Presents Reader by Autonomy
CVE-2007-5405

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Notes; Mail Security Appliance; Mail Security; Keyview
Vendor: CVE Published:; 10 April 2008

Summary

The Applix Presents reader by Autonomy is affected by multiple buffer overflow vulnerabilities in the kpagrdr.dll component. These vulnerabilities arise when an attacker sends a specially crafted .ag file that includes excessively long ENCODING attributes or tokens in the *BEGIN tag. Exploitation of these vulnerabilities can lead to arbitrary code execution, posing significant risks to users of IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter. Prompt software updates and patches are essential to mitigate the risks associated with these vulnerabilities.

References

http://secunia.com/advisories/28140

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/29342

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/secunia_research/2007-97/advisory/

x_refsource_MISC

EPSS Score

47% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 10, 2008
Vulnerability Reserved
Oct 12, 2007