CVE-2008-4564

Currently unrated

Key Information:

Vendor: Symantec
Status: Data Loss Prevention Detection Servers; Keyview Filter Sdk; Lotus Notes; Mail Security
Vendor: CVE Published:; 18 March 2009

Summary

Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file.

References

http://www.symantec.com/avcenter/security/Content/2009.03...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2009/0744

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/34303

third-party-advisoryx_refsource_SECUNIA

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 18, 2009
Vulnerability Reserved
Oct 14, 2008