Executive Summary
Summary | |
---|---|
Title | Autonomy Keyview IDOL contains multiple vulnerabilities in file parsers |
Informations | |||
---|---|---|---|
Name | VU#126159 | First vendor Publication | 2011-06-07 |
Vendor | VU-CERT | Last vendor Modification | 2011-06-07 |
Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : | |||
---|---|---|---|
Cvss Base Score | N/A | Attack Range | N/A |
Cvss Impact Score | N/A | Attack Complexity | N/A |
Cvss Expoit Score | N/A | Authentication | N/A |
Calculate full CVSS 2.0 Vectors scores |
Detail
Vulnerability Note VU#126159Autonomy Keyview IDOL contains multiple vulnerabilities in file parsersOverviewAutonomy Keyview IDOL contains multiple vulnerabilities in file parsers. These vulnerabilities could allow a remote attacker to execute arbitrary code on an affected system.I. DescriptionAutonomy Keyview IDOL is a set of libraries that can decode over 1,000 different file formats. The Autonomy Keyview IDOL libraries are used by a variety of applications, including IBM Lotus Notes, Lotus Domino, Symantec Mail Security, Hyland OnBase, and many others. These vulnerabilities result from a number of underlying issues. Some of these cases demonstrated memory corruption with attacker-controlled input and could be exploited to run arbitrary code. For example, code execution was verified by CERT/CC for a stack buffer overflow in the .WRI file parser.II. ImpactBy causing an application to process a specially-crafted file with the Autonomy Keyview IDOL library, a remote, unauthenticated attacker may be able to cause an affected application to crash, resulting in a denial of service, or executing arbitrary code with the privileges of the vulnerable application. Depending on what application is using Keyview IDOL, these may happen as the result of some user interaction, such as single-clicking on a file, or it may happen with no user interaction at all.III. SolutionApply an UpdateAutonomy has released version 10.13.1 of Keyview IDOL to address these issues.
;188=xlssr.dll ---> this would be the result of the Excel dll commented out Symantec Mail Security is susceptible only if the attachment content scanning option is enabled. To disable the content filtering rules for Symantec Mail Security for Microsoft Exchange:
Vendor Information
Referenceshttp://www.autonomy.com/content/Products/idol-modules-connectors/index.en.html These vulnerabilities were reported by Will Dormann and Jared Allar of the CERT/CC. This document was written by Jared Allar.
|
Original Source
Url : http://www.kb.cert.org/vuls/id/126159 |
Alert History
Date | Informations |
---|---|
2014-02-17 12:07:31 |
|