CVE-2008-4564
Autonomy KeyView SDK <= 10.4 - Remote Code Execution via Crafted Word Perfect Document
Title source: llmDescription
Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file.
References (18)
Core 18
Core References
Vendor Advisory x_refsource_confirm
http://www.symantec.com/avcenter/security/Content/2009.03.17a.html
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0744
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34307
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34303
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1021859
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/49284
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21377573
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34318
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1021856
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1021857
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/276563
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0756
Various Sources x_refsource_confirm
https://customers.autonomy.com/support/secure/docs/Updates/Keyview/Filter%20SDK/10.4/kv_update_nti40_10.4.zip.readme.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34355
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/52713
Third Party Advisory third-party-advisory
x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=774
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/34086
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0757
Scores
EPSS
0.5083
EPSS Percentile
97.9%
Details
CWE
CWE-119
Status
published
Products (45)
autonomy/keyview_export_sdk
2.0
autonomy/keyview_export_sdk
9.2.0
autonomy/keyview_export_sdk
10
autonomy/keyview_export_sdk
10.3
autonomy/keyview_export_sdk
< 10.4
autonomy/keyview_filter_sdk
2.0
autonomy/keyview_filter_sdk
9.2.0
autonomy/keyview_filter_sdk
10
autonomy/keyview_filter_sdk
10.3
autonomy/keyview_filter_sdk
< 10.4
... and 35 more
Published
Mar 18, 2009
Tracked Since
Feb 18, 2026