CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
97.0%
Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | lotus_notes | * | cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:* |
ibm | lotus_notes | 3.0 | cpe:2.3:a:ibm:lotus_notes:3.0:*:*:*:*:*:*:* |
ibm | lotus_notes | 3.0.0.1 | cpe:2.3:a:ibm:lotus_notes:3.0.0.1:*:*:*:*:*:*:* |
ibm | lotus_notes | 3.0.0.2 | cpe:2.3:a:ibm:lotus_notes:3.0.0.2:*:*:*:*:*:*:* |
ibm | lotus_notes | 4.2 | cpe:2.3:a:ibm:lotus_notes:4.2:*:*:*:*:*:*:* |
ibm | lotus_notes | 4.2.1 | cpe:2.3:a:ibm:lotus_notes:4.2.1:*:*:*:*:*:*:* |
ibm | lotus_notes | 4.2.2 | cpe:2.3:a:ibm:lotus_notes:4.2.2:*:*:*:*:*:*:* |
ibm | lotus_notes | 4.5 | cpe:2.3:a:ibm:lotus_notes:4.5:*:*:*:*:*:*:* |
ibm | lotus_notes | 4.6 | cpe:2.3:a:ibm:lotus_notes:4.6:*:*:*:*:*:*:* |
ibm | lotus_notes | 4.6.7a | cpe:2.3:a:ibm:lotus_notes:4.6.7a:*:*:*:*:*:*:* |
labs.idefense.com/intelligence/vulnerabilities/display.php?id=907
secunia.com/advisories/44624
www.ibm.com/support/docview.wss?uid=swg21500034
www.securityfocus.com/bid/47962
exchange.xforce.ibmcloud.com/vulnerabilities/67623
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13796