Stack-Based Buffer Overflow in Autonomy KeyView for IBM Lotus Notes
CVE-2011-1214

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Notes
Vendor: CVE Published:; 31 May 2011

Summary

A stack-based buffer overflow exists in the rtfsr.dll component of Autonomy KeyView, utilized by IBM Lotus Notes prior to version 8.5.2 FP3. This vulnerability allows remote attackers to execute arbitrary code by crafting a malicious link embedded in a .rtf file attachment. Exploitation of this flaw could lead to unauthorized access or compromise of affected systems, posing significant security risks.

References

http://www.ibm.com/support/docview.wss?uid=swg21500034

x_refsource_CONFIRM

http://www.securityfocus.com/bid/47962

vdb-entryx_refsource_BID

http://secunia.com/advisories/44624

third-party-advisoryx_refsource_SECUNIA

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 31, 2011
Vulnerability Reserved
Mar 3, 2011