CVE-2009-3032

Currently unrated

Key Information:

Vendor: Symantec
Status: Data Loss Prevention Detection Servers; Mail Security; Im Manager 2007; Lotus Notes
Vendor: CVE Published:; 5 March 2010

Summary

Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://labs.idefense.com/intelligence/vulnerabilities/dis...

third-party-advisoryx_refsource_IDEFENSE

http://www-01.ibm.com/support/docview.wss?uid=swg21440812

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 5, 2010
Vulnerability Reserved
Aug 31, 2009