CVE-2009-3032

Published Mar 5, 2010

Last updated 12 years ago

CVSS info 10.0

Overview

Description: Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-189

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0119A252-73B1-490F-9371-06E8FDB8B979"
          },
          {
            "criteria": "cpe:2.3:a:symantec:brightmail_gateway:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EAF9163-1511-4424-8019-9868D0C4D0C9"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.1.1:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D804B423-8990-497F-9FB8-86E3D06F4F70"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.1.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A13CD3B-0529-43E4-A4F8-96B5180B0DA3"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:9.0.1:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D92BC1D-E75F-420E-A2DB-DBFC07508A2B"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:9.0.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED4D0804-7AE2-45D6-AAD5-F70C14354BBF"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:10.0:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A06E56E-5DE3-4EA2-90BC-366EBC4283A1"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:10.0:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9EAB6C2-F8A1-42BD-A8C8-A8D7017606E3"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:8.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14920820-3D26-4AC4-839E-531ABA6933A5"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:9.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA274AFE-D535-4683-964A-FBCBF2D1291E"
          },
          {
            "criteria": "cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA2A7B74-D51B-4A59-9A41-2963247C3C39"
          },
          {
            "criteria": "cpe:2.3:a:symantec:im_manager_2007:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "526474D6-9084-4F53-9172-8C9C7BB5FE01"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E7788BD-652E-4306-AED0-6AE7F9A07836"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.181:*:smtp:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D602A441-863D-4E90-A01D-57C41725D008"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.182:*:smtp:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A792A9C1-95EF-4CE2-B14F-3DEE09BFAF8A"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.189:*:smtp:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D9C7B86-7F9A-4DF8-A4DF-9A7CA5991D91"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.11:*:microsoft_exchange:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95D5B1CF-6C20-4D66-9D30-631441FA953B"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.12:*:microsoft_exchange:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "868EFAF0-F5FA-46EB-99CC-19C1DAF06954"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:5.0.13:*:microsoft_exchange:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16BE9C8A-A8AF-43FF-B4D9-07F57E226385"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:6.0.6:*:microsoft_exchange:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0026CDBB-92E2-45DE-9637-F18224CE3E6C"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:6.0.7:*:microsoft_exchange:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12AC5934-DAC3-4866-B31F-71EC14F42CED"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:6.0.8:*:microsoft_exchange:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7604B25-6AA0-4814-A8D4-780811A247B6"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:7.5.3.25:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07FADB30-A418-43C5-A798-4769C5350E7B"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:7.5.4.29:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6EAB0E10-A62F-42DB-BA86-FBFCFCF0E13D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:7.5.5.32:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70F1A708-9914-4875-B594-D8A9D65182D8"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:7.5.6:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D04308D-D372-4760-B67F-A25DEEDF52E8"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:7.5.7:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F15656D0-F6A6-43EE-86AF-2263B49FFA75"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:7.5.8:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E8F8098-9697-4536-B8C6-6224D9A1C6F6"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:8.0:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2ABC5ED9-168A-4420-9286-179345BD89DD"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:8.0.1:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6A7646A-74D8-4BA6-BE5C-06A55CB3CECC"
          },
          {
            "criteria": "cpe:2.3:a:symantec:mail_security:8.0.2:*:domino:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6193ECEF-1412-4887-98FD-F37122897AC6"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References