Buffer Overflow Vulnerability in IBM Lotus Notes - Autonomy KeyView Component
CVE-2011-1217

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Notes
Vendor: CVE Published:; 31 May 2011

Summary

A buffer overflow exists in the kpprzrdr.dll component of Autonomy KeyView, utilized in IBM Lotus Notes prior to version 8.5.2 FP3. This vulnerability allows remote attackers to execute arbitrary code by sending specially crafted .prz attachments. Exploitation of this flaw can lead to severe compromises of affected systems, highlighting the necessity for prompt updates and security measures.

References

http://www.ibm.com/support/docview.wss?uid=swg21500034

x_refsource_CONFIRM

http://www.securityfocus.com/bid/47962

vdb-entryx_refsource_BID

http://secunia.com/advisories/44624

third-party-advisoryx_refsource_SECUNIA

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 31, 2011
Vulnerability Reserved
Mar 3, 2011