Heap-based buffer overflow in an unspecified library in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via a crafted compound file, as demonstrated using a Quattro Pro file, which is not properly handled by the Quattro speed reader (qpssr.dll).
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2010-08-17 13:00
Updated : 2013-02-06 20:26
NVD link : CVE-2010-0126
Mitre link : CVE-2010-0126
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
autonomy
- keyview_export_sdk
- keyview_filter_sdk
- keyview_viewer_sdk