Signature Detail

SMTP: IBM Lotus Notes MIF Attachment Viewer Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the IBM Lotus Notes MIF Attachment Viewer. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the application.

Extended Description

Autonomy KeyView is prone to multiple buffer-overflow vulnerabilities. Successfully exploiting these issues could allow an attacker to execute arbitrary code in the context of the user running the application. Multiple applications incorporate the vulnerable KeyView component, so are also considered vulnerable to these issues. NOTE: This document was previously titled 'IBM Lotus Notes Attachment Viewer Multiple Buffer Overflow Vulnerabilities'. It has been updated and relabeled to properly reflect the vulnerable component.

Affected Products

• Activepdf docconverter 3.8.2.5
• Autonomy keyview_export_sdk 7
• Autonomy keyview_export_sdk 8
• Autonomy keyview_export_sdk 9
• Autonomy keyview_filter_sdk 7
• Autonomy keyview_filter_sdk 8
• Autonomy keyview_filter_sdk 9
• Autonomy keyview_viewer_sdk 7
• Autonomy keyview_viewer_sdk 8
• Autonomy keyview_viewer_sdk 9
• Ibm lotus_notes 7.0.2
• Symantec mail_security_appliance 5.0.0
• Symantec mail_security_appliance 5.0.0.24
• Symantec mail_security_for_domino 7.5
• Symantec mail_security_for_domino 7.5.0.19
• Symantec mail_security_for_microsoft_exchange 5.0.0
• Symantec mail_security_for_microsoft_exchange 5.0.0.024
• Symantec mail_security_for_microsoft_exchange 5.0.6.368
• Symantec mail_security_for_microsoft_exchange 5.0.7.373
• Symantec mail_security_for_smtp 5.0
• Symantec mail_security_for_smtp 5.0.1

References

• BugTraq: 26175