CVE-2007-5910
Summary
| CVE | CVE-2007-5910 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-11-10 02:46:00 UTC |
| Updated | 2011-03-08 03:01:00 UTC |
| Description | Stack-based buffer overflow in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, wp6sr.dll in IBM Lotus Notes 8.0 and before 7.0.3, Symantec Mail Security, and other products, allows remote attackers to execute arbitrary code via a crafted WordPerfect (WPD) file. |
Risk And Classification
Problem Types: CWE-119
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Activepdf | Docconverter | 3.8.2_.5 | All | All | All |
| Application | Activepdf | Docconverter | 3.8.2_.5 | All | All | All |
| Application | Autonomy | Keyview Export Sdk | All | All | All | All |
| Application | Autonomy | Keyview Filter Sdk | All | All | All | All |
| Application | Autonomy | Keyview Viewer Sdk | All | All | All | All |
| Application | Ibm | Lotus Notes | All | All | All | All |
| Application | Symantec | Mail Security | 5.0 | All | appliance | All |
| Application | Symantec | Mail Security | 5.0 | All | microsoft_exchange | All |
| Application | Symantec | Mail Security | 5.0.0 | All | smtp | All |
| Application | Symantec | Mail Security | 5.0.0.24 | All | appliance | All |
| Application | Symantec | Mail Security | 5.0.1 | All | smtp | All |
| Application | Symantec | Mail Security | 7.5 | All | domino | All |
| Application | Symantec | Mail Security | 5.0 | All | appliance | All |
| Application | Symantec | Mail Security | 5.0 | All | microsoft_exchange | All |
| Application | Symantec | Mail Security | 5.0.0 | All | smtp | All |
| Application | Symantec | Mail Security | 5.0.0.24 | All | appliance | All |
| Application | Symantec | Mail Security | 5.0.1 | All | smtp | All |
| Application | Symantec | Mail Security | 7.5 | All | domino | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| SecurityReason - IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities | SREASON | securityreason.com | |
| Autonomy KeyView Multiple Buffer Overflow Vulnerabilities | BID | www.securityfocus.com | |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| Verity Keyview SDK Multiple Vulnerabilities - Advisories - Secunia | SECUNIA | secunia.com | Patch, Vendor Advisory |
| Symantec Security Center | CONFIRM | securityresponse.symantec.com | |
| [vuln.sg] IBM Lotus Notes wp6sr.dll WPD Attachment Viewer Buffer Overflow | MISC | vuln.sg | |
| SecurityTracker.com Archives - IBM Lotus Notes Buffer Overflows in File Attachment Viewer Lets Remote Users Execute Arbitrary Code | SECTRACK | securitytracker.com | |
| SecurityTracker.com Archives - Symantec Mail Security Buffer Overflows in KeyView Module Let Remote Users Execute Arbitrary Code | SECTRACK | securitytracker.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| [vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities | MISC | vuln.sg | |
| IBM notice: The page you requested cannot be displayed | CONFIRM | www-1.ibm.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.