Page 2 of 7 results (0.009 seconds)

CVSS: 9.3EPSS: 2%CPEs: 7EXPL: 0

Stack-based buffer overflow in the SpreadSheet Lotus 123 reader (wkssr.dll), as used in Autonomy KeyView 10.4 and 10.9, Symantec Mail Security, and possibly other products, allows remote attackers to execute arbitrary code via unspecified vectors related to floating point conversion in unknown record types. Desbordamiento de búfer basado en pila en el lector SpreadSheet Lotus 123 (wkssr.dll), como el usado en Autonomy KeyView v10.4 y v10.9, Symantec Mail Security, y posiblemente otros productos, permite a los atacantes remotos ejecutar código a su elección a través de vectores no especificados relacionados con conversión de coma flotante en tipos de registro desconocidos. • http://secunia.com/secunia_research/2010-23 http://secunia.com/secunia_research/2010-25 http://www-01.ibm.com/support/docview.wss?uid=swg21440812 http://www.securityfocus.com/bid/41928 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100727_01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 3%CPEs: 6EXPL: 0

Heap-based buffer overflow in an unspecified library in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via a crafted compound file, as demonstrated using a Quattro Pro file, which is not properly handled by the Quattro speed reader (qpssr.dll). Desbordamiento de búfer basado en la memoria dinámica en una librería no especificada de Autonomy KeyView v10.4 y v10.9, como el usado en varios IBM, Symantec, y otros productos, permite a atacantes remotos ejecutar código a su elección a través de archivos compuestos manipulados, como lo demuestra el uso de ficheros Quattro Pro, que no es manejado apropiadamente por Quattro speed reader (qpssr.dll). • http://secunia.com/secunia_research/2010-16 http://www-01.ibm.com/support/docview.wss?uid=swg21440812 http://www.securityfocus.com/bid/41928 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100727_01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •