Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveFlexeraCVE-2010-1524
HistoryAug 17, 2010 - 8:00 p.m.

CVE-2010-1524

2010-08-1720:00:03
CWE-119
flexera
web.nvd.nist.gov
28
spreadsheet
lotus 123
wkssr.dll
autonomy keyview 10.4
autonomy keyview 10.9
remote attackers
arbitrary code
memory corruption
cve-2010-1524
nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.023

Percentile

89.8%

JSON

The SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via unspecified vectors related to allocation of an array of pointers and “string indexing,” which triggers memory corruption.

Affected configurations

Nvd
Node
autonomykeyview_export_sdkMatch10.4
OR
autonomykeyview_export_sdkMatch10.9
OR
autonomykeyview_filter_sdkMatch10.4
OR
autonomykeyview_filter_sdkMatch10.9
OR
autonomykeyview_viewer_sdkMatch10.4
OR
autonomykeyview_viewer_sdkMatch10.9
VendorProductVersionCPE
autonomykeyview_export_sdk10.4cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*
autonomykeyview_export_sdk10.9cpe:2.3:a:autonomy:keyview_export_sdk:10.9:*:*:*:*:*:*:*
autonomykeyview_filter_sdk10.4cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*
autonomykeyview_filter_sdk10.9cpe:2.3:a:autonomy:keyview_filter_sdk:10.9:*:*:*:*:*:*:*
autonomykeyview_viewer_sdk10.4cpe:2.3:a:autonomy:keyview_viewer_sdk:10.4:*:*:*:*:*:*:*
autonomykeyview_viewer_sdk10.9cpe:2.3:a:autonomy:keyview_viewer_sdk:10.9:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
securityvulns 2
nvd 1
nessus 1
prion
prion
Memory corruption
2010-08-17 20:00:00
cvelist
cvelist
CVE-2010-1524
2010-08-17 17:31:00
securityvulns
securityvulns
Secunia Research: Autonomy KeyView wkssr.dll String Indexing Vulnerability
2010-07-29 00:00:00
Autonomy KeyView multiple security vulnerabilities
2010-08-26 00:00:00
nvd
nvd
CVE-2010-1524
2010-08-17 20:00:03
nessus
nessus
Autonomy KeyView Filter Module Multiple Memory Corruption Vulnerabilities (Lotus Notes)
2010-07-29 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.023

Percentile

89.8%

JSON
Related for CVE-2010-1524
prion1cvelist1securityvulns2nvd1nessus1