CVE-2005-2618
secunia-LotusNotesOverflow.txt
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple stack-based buffer overflows in Autonomy (formerly Verity) KeyView SDK before 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allow remote attackers to execute arbitrary code via (1) a UUE file containing an encoded file with a long filename handled by uudrdr.dll, (2) a compressed ZIP file with a long filename handled by kvarcve.dll, (3) a TAR archive with a long filename that is extracted to a directory with a long path handled by the TAR reader (tarrdr.dll), (4) an email that contains a long HTTP, FTP, or // link handled by the HTML speed reader (htmsr.dll) or (5) an email containing a crafted long link handled by the HTML speed reader (htmsr.dll).
Secunia Research has discovered a vulnerability in Lotus Notes, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the TAR reader (tarrdr.dll) when extracting files from a TAR archive. This can be exploited to cause a stack-based buffer overflow via a TAR archive containing a file with a long filename. Successful exploitation allows execution of arbitrary code, but requires that the user views a malicious TAR archive and chooses to extracts a compressed file to a directory with a very long path (more than 220 bytes). Affected versions are Lotus Notes 6.5.4 and Lotus Notes 7.0.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2005-08-17 CVE Reserved
- 2005-12-31 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (26)
| URL | Tag | Source |
|---|---|---|
| http://www.kb.cert.org/vuls/id/884076 | Third Party Advisory |
|
| http://www.securityfocus.com/archive/1/424626/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/424666/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/424689/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/424692/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/16576 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/0500 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/24635 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/24636 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/24638 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/24639 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/16100 | 2018-10-19 | |
| http://secunia.com/advisories/16280 | 2018-10-19 | |
| http://securitytracker.com/id?1015657 | 2018-10-19 | |
| http://www-1.ibm.com/support/docview.wss?rs=475&uid=swg21229918 | 2018-10-19 | |
| http://www.osvdb.org/23064 | 2018-10-19 | |
| http://www.osvdb.org/23065 | 2018-10-19 | |
| http://www.osvdb.org/23066 | 2018-10-19 | |
| http://www.osvdb.org/23067 | 2018-10-19 | |
| http://www.osvdb.org/23068 | 2018-10-19 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/secunia_research/2005-32/advisory | 2018-10-19 | |
| http://secunia.com/secunia_research/2005-34/advisory | 2018-10-19 | |
| http://secunia.com/secunia_research/2005-36/advisory | 2018-10-19 | |
| http://secunia.com/secunia_research/2005-37/advisory | 2018-10-19 | |
| http://secunia.com/secunia_research/2005-66/advisory | 2018-10-19 | |
| http://www.vupen.com/english/advisories/2006/0501 | 2018-10-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Autonomy Search vendor "Autonomy" | Keyview Export Sdk Search vendor "Autonomy" for product "Keyview Export Sdk" | * | - |
Affected
| ||||||
| Autonomy Search vendor "Autonomy" | Keyview Filter Sdk Search vendor "Autonomy" for product "Keyview Filter Sdk" | * | - |
Affected
| ||||||
| Autonomy Search vendor "Autonomy" | Keyview Viewer Sdk Search vendor "Autonomy" for product "Keyview Viewer Sdk" | * | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.0.1 Search vendor "Ibm" for product "Lotus Notes" and version "6.0.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.0.2 Search vendor "Ibm" for product "Lotus Notes" and version "6.0.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.0.3 Search vendor "Ibm" for product "Lotus Notes" and version "6.0.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.0.4 Search vendor "Ibm" for product "Lotus Notes" and version "6.0.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.0.5 Search vendor "Ibm" for product "Lotus Notes" and version "6.0.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.5 Search vendor "Ibm" for product "Lotus Notes" and version "6.5" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.5.1 Search vendor "Ibm" for product "Lotus Notes" and version "6.5.1" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.5.2 Search vendor "Ibm" for product "Lotus Notes" and version "6.5.2" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.5.3 Search vendor "Ibm" for product "Lotus Notes" and version "6.5.3" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 6.5.4 Search vendor "Ibm" for product "Lotus Notes" and version "6.5.4" | - |
Affected
| ||||||
| Ibm Search vendor "Ibm" | Lotus Notes Search vendor "Ibm" for product "Lotus Notes" | 7.0 Search vendor "Ibm" for product "Lotus Notes" and version "7.0" | - |
Affected
| ||||||