Overview
Autonomy KeyView SDK contains a buffer overflow vulnerability that may allow an attacker to execute arbitrary code.
Description
Autonomy KeyView SDK is a commercial software development kit (SDK) that includes file filtering libraries. A vulnerability exists in the way the SDK libraries process specially crafted WordPerfect documents. According to iDefense: This vulnerability exists within the "wp6sr.dll," which implements the processing of WordPerfect documents. When processing certain records, data is copied from the file into a fixed-size stack buffer without ensuring that enough space is available. By overflowing the buffer, an attacker can overwrite control flow structures stored on the stack. |
Impact
An unauthenticated attacker may be able to execute arbitrary code or cause a vulnerable system to crash. |
Solution
Apply updates |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 0 | AV:--/AC:--/Au:--/C:--/I:--/A:-- |
| Temporal | 0 | E:Not Defined (ND)/RL:Not Defined (ND)/RC:Not Defined (ND) |
| Environmental | 0 | CDP:Not Defined (ND)/TD:Not Defined (ND)/CR:Not Defined (ND)/IR:Not Defined (ND)/AR:Not Defined (ND) |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=774
- https://customers.autonomy.com/support/login.jsp?notLoggedIn=true&origURL=%2Fsecure%2Fdocs%2FUpdates%2FKeyview%2FFilter+SDK%2F10.4%2Fkv_update_nti40_10.4.zip.readme.html
- http://www-01.ibm.com/support/docview.wss?uid=swg21377573
- http://secunia.com/advisories/34307/
- http://securityresponse.symantec.com/avcenter/security/Content/2009.03.17a.html
- http://secunia.com/advisories/34318/
Acknowledgements
This issue was made public by iDefense.
This document was written by Chris Taschner.
Other Information
| CVE IDs: | CVE-2008-4564 |
| Severity Metric: | 6.00 |
| Date Public: | 2009-03-17 |
| Date First Published: | 2009-03-19 |
| Date Last Updated: | 2009-04-30 18:30 UTC |
| Document Revision: | 10 |