Autonomy KeyView Filter Module Multiple Memory Corruption Vulnerabilities (Lotus Notes)

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a DLL that is affected by several buffer
overflow vulnerabilities.

Description :

The version of Lotus Notes installed on the remote Windows host ships
with several DLL designed to perform file conversions ('Autonomy
KeyView Filter').

Specifically, these DLLs are affected by several overflow
vulnerabilities that may allow an attacker to execute arbitrary code
on the remote host.

To exploit these vulnerabilities, an attacker would need to send a
specially malformed document to a user on the remote host and wait for
him to open it via Notes.

See also :

http://www-01.ibm.com/support/docview.wss?uid=swg21440812
http://secunia.com/secunia_research/2010-16/
http://secunia.com/secunia_research/2010-27/
http://secunia.com/secunia_research/2010-49/
http://secunia.com/secunia_research/2010-28/
http://secunia.com/secunia_research/2010-35/
http://secunia.com/secunia_research/2010-31/

Solution :

Apply the patch from IBM

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 47899 ()

Bugtraq ID: 41928

CVE ID: CVE-2010-0126
CVE-2010-0133
CVE-2010-0134
CVE-2010-0135
CVE-2010-0131
CVE-2010-1524
CVE-2010-1525

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now