Lucene search

MitreCVE-2011-1217

HistoryMay 31, 2011 - 8:55 p.m.

CVE-2011-1217

2011-05-3120:55:02

CWE-119

mitre

web.nvd.nist.gov

cve-2011-1217

buffer overflow

kpprzrdr.dll

autonomy keyview

ibm lotus notes

remote code execution

crafted attachment

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.529

Percentile

97.7%

JSON

Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .prz attachment. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd

Node

ibmlotus_notesRange≤8.5.2.2

ibmlotus_notesMatch3.0

ibmlotus_notesMatch3.0.0.1

ibmlotus_notesMatch3.0.0.2

ibmlotus_notesMatch4.2

ibmlotus_notesMatch4.2.1

ibmlotus_notesMatch4.2.2

ibmlotus_notesMatch4.5

ibmlotus_notesMatch4.6

ibmlotus_notesMatch4.6.7a

ibmlotus_notesMatch4.6.7h

ibmlotus_notesMatch5.0

ibmlotus_notesMatch5.0.1

ibmlotus_notesMatch5.0.1.02

ibmlotus_notesMatch5.0.1a

ibmlotus_notesMatch5.0.1b

ibmlotus_notesMatch5.0.1c

ibmlotus_notesMatch5.0.2

ibmlotus_notesMatch5.0.2a

ibmlotus_notesMatch5.0.2b

ibmlotus_notesMatch5.0.2c

ibmlotus_notesMatch5.0.3

ibmlotus_notesMatch5.0.4

ibmlotus_notesMatch5.0.4a

ibmlotus_notesMatch5.0.5

ibmlotus_notesMatch5.0.5.01

ibmlotus_notesMatch5.0.5.02

ibmlotus_notesMatch5.0.6

ibmlotus_notesMatch5.0.6a

ibmlotus_notesMatch5.0.6a.01

ibmlotus_notesMatch5.0.7

ibmlotus_notesMatch5.0.7a

ibmlotus_notesMatch5.0.8

ibmlotus_notesMatch5.0.9

ibmlotus_notesMatch5.0.9a

ibmlotus_notesMatch5.0.10

ibmlotus_notesMatch5.0.11

ibmlotus_notesMatch5.0.12

ibmlotus_notesMatch5.0a

ibmlotus_notesMatch5.02

ibmlotus_notesMatch6.0

ibmlotus_notesMatch6.0.1

ibmlotus_notesMatch6.0.1cf1

ibmlotus_notesMatch6.0.1cf2

ibmlotus_notesMatch6.0.1cf3

ibmlotus_notesMatch6.0.2

ibmlotus_notesMatch6.0.2cf1

ibmlotus_notesMatch6.0.2cf2

ibmlotus_notesMatch6.0.2.2

ibmlotus_notesMatch6.0.3

ibmlotus_notesMatch6.0.4

ibmlotus_notesMatch6.0.5

ibmlotus_notesMatch6.5

ibmlotus_notesMatch6.5.1

ibmlotus_notesMatch6.5.2

ibmlotus_notesMatch6.5.3

ibmlotus_notesMatch6.5.3.1

ibmlotus_notesMatch6.5.4

ibmlotus_notesMatch6.5.4.1

ibmlotus_notesMatch6.5.4.2

ibmlotus_notesMatch6.5.4.3

ibmlotus_notesMatch6.5.5

ibmlotus_notesMatch6.5.5.1

ibmlotus_notesMatch6.5.5.2

ibmlotus_notesMatch6.5.5.3

ibmlotus_notesMatch6.5.6

ibmlotus_notesMatch6.5.6.1

ibmlotus_notesMatch6.5.6.2

ibmlotus_notesMatch6.5.6.3

ibmlotus_notesMatch7.0

ibmlotus_notesMatch7.0.0

ibmlotus_notesMatch7.0.1

ibmlotus_notesMatch7.0.1.1

ibmlotus_notesMatch7.0.2

ibmlotus_notesMatch7.0.2.1

ibmlotus_notesMatch7.0.2.2

ibmlotus_notesMatch7.0.2.3

ibmlotus_notesMatch7.0.3

ibmlotus_notesMatch7.0.3.1

ibmlotus_notesMatch7.0.4

ibmlotus_notesMatch7.0.4.0

ibmlotus_notesMatch7.0.4.1

ibmlotus_notesMatch7.0.4.2

ibmlotus_notesMatch8.0

ibmlotus_notesMatch8.0.0

ibmlotus_notesMatch8.0.1

ibmlotus_notesMatch8.0.2

ibmlotus_notesMatch8.0.2.0

ibmlotus_notesMatch8.0.2.1

ibmlotus_notesMatch8.0.2.2

ibmlotus_notesMatch8.0.2.3

ibmlotus_notesMatch8.0.2.4

ibmlotus_notesMatch8.0.2.5

ibmlotus_notesMatch8.0.2.6

ibmlotus_notesMatch8.5

ibmlotus_notesMatch8.5.0.0

ibmlotus_notesMatch8.5.0.1

ibmlotus_notesMatch8.5.1

ibmlotus_notesMatch8.5.1.0

ibmlotus_notesMatch8.5.1.1

ibmlotus_notesMatch8.5.1.2

ibmlotus_notesMatch8.5.1.3

ibmlotus_notesMatch8.5.1.4

ibmlotus_notesMatch8.5.1.5

ibmlotus_notesMatch8.5.2.0

ibmlotus_notesMatch8.5.2.1

VendorProductVersionCPE
ibmlotus_notes*cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:*
ibmlotus_notes3.0cpe:2.3:a:ibm:lotus_notes:3.0:*:*:*:*:*:*:*
ibmlotus_notes3.0.0.1cpe:2.3:a:ibm:lotus_notes:3.0.0.1:*:*:*:*:*:*:*
ibmlotus_notes3.0.0.2cpe:2.3:a:ibm:lotus_notes:3.0.0.2:*:*:*:*:*:*:*
ibmlotus_notes4.2cpe:2.3:a:ibm:lotus_notes:4.2:*:*:*:*:*:*:*
ibmlotus_notes4.2.1cpe:2.3:a:ibm:lotus_notes:4.2.1:*:*:*:*:*:*:*
ibmlotus_notes4.2.2cpe:2.3:a:ibm:lotus_notes:4.2.2:*:*:*:*:*:*:*
ibmlotus_notes4.5cpe:2.3:a:ibm:lotus_notes:4.5:*:*:*:*:*:*:*
ibmlotus_notes4.6cpe:2.3:a:ibm:lotus_notes:4.6:*:*:*:*:*:*:*
ibmlotus_notes4.6.7acpe:2.3:a:ibm:lotus_notes:4.6.7a:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	lotus_notes	*	cpe:2.3:a:ibm:lotus_notes::::::::
ibm	lotus_notes	3.0	cpe:2.3:a:ibm:lotus_notes:3.0:::::::*
ibm	lotus_notes	3.0.0.1	cpe:2.3:a:ibm:lotus_notes:3.0.0.1:::::::*
ibm	lotus_notes	3.0.0.2	cpe:2.3:a:ibm:lotus_notes:3.0.0.2:::::::*
ibm	lotus_notes	4.2	cpe:2.3:a:ibm:lotus_notes:4.2:::::::*
ibm	lotus_notes	4.2.1	cpe:2.3:a:ibm:lotus_notes:4.2.1:::::::*
ibm	lotus_notes	4.2.2	cpe:2.3:a:ibm:lotus_notes:4.2.2:::::::*
ibm	lotus_notes	4.5	cpe:2.3:a:ibm:lotus_notes:4.5:::::::*
ibm	lotus_notes	4.6	cpe:2.3:a:ibm:lotus_notes:4.6:::::::*
ibm	lotus_notes	4.6.7a	cpe:2.3:a:ibm:lotus_notes:4.6.7a:::::::*

Rows per page:

1-10 of 1061

References

secunia.com/advisories/44624

www.ibm.com/support/docview.wss?uid=swg21500034

www.securityfocus.com/bid/47962

exchange.xforce.ibmcloud.com/vulnerabilities/67624

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14822

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.529

Percentile

97.7%

JSON

Related for CVE-2011-1217