CVE-2008-4564

{"id": "CVE-2008-4564", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2009-03-18T15:30:00.267", "references": [{"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=774", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/52713", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34303", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34307", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34318", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34355", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1021856", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1021857", "source": "cve@mitre.org"}, {"url": "http://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21377573", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/276563", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/34086", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1021859", "source": "cve@mitre.org"}, {"url": "http://www.symantec.com/avcenter/security/Content/2009.03.17a.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2009/0744", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2009/0756", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2009/0757", "source": "cve@mitre.org"}, {"url": "https://customers.autonomy.com/support/secure/docs/Updates/Keyview/Filter%20SDK/10.4/kv_update_nti40_10.4.zip.readme.html", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49284", "source": "cve@mitre.org"}, {"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=774", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/52713", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/34303", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/34307", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/34318", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/34355", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1021856", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1021857", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21377573", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/276563", "tags": ["US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/34086", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1021859", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.symantec.com/avcenter/security/Content/2009.03.17a.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2009/0744", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2009/0756", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2009/0757", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://customers.autonomy.com/support/secure/docs/Updates/Keyview/Filter%20SDK/10.4/kv_update_nti40_10.4.zip.readme.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/49284", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en wp6sr.dll en el Autonomy KeyView SDK 10.4 y anteriores, como es usado en IBM Lotus Notes, productos Symantec Mail Security (SMS), productos Symantec BrightMail Appliance y productos Symantec Data Loss Prevention (DLP) permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante un fichero Word Perfect Document (WPD) manipulado."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:autonomy:keyview_export_sdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B16D7CE-3770-46A6-BECA-76989E9639BE", "versionEndIncluding": "10.4"}, {"criteria": "cpe:2.3:a:autonomy:keyview_export_sdk:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6DB3799E-43FC-40AA-85EC-72D87962C95D"}, {"criteria": "cpe:2.3:a:autonomy:keyview_export_sdk:9.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B92810D7-A5C2-4118-8B67-9E1A49C6C4D2"}, {"criteria": "cpe:2.3:a:autonomy:keyview_export_sdk:10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "893D0CC9-971E-4C78-AD80-D004D8BB5F37"}, {"criteria": "cpe:2.3:a:autonomy:keyview_export_sdk:10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15B8E1D9-ADF9-40B2-A652-53CDEF60FAB5"}, {"criteria": "cpe:2.3:a:autonomy:keyview_filter_sdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "177E8A5C-0812-47BC-9CFC-F8E25A0F42AB", "versionEndIncluding": "10.4"}, {"criteria": "cpe:2.3:a:autonomy:keyview_filter_sdk:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8E3B7CC-48D2-4EB0-A0D9-44AA6947CF65"}, {"criteria": "cpe:2.3:a:autonomy:keyview_filter_sdk:9.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B90F221E-6C5A-4844-A098-53BE40E78A40"}, {"criteria": "cpe:2.3:a:autonomy:keyview_filter_sdk:10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4F4A68C-EF5D-41BB-A518-D277927D80D3"}, {"criteria": "cpe:2.3:a:autonomy:keyview_filter_sdk:10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC6E0041-6647-4B04-B4C1-019E1F12E606"}, {"criteria": "cpe:2.3:a:autonomy:keyview_viewer_sdk:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD370EEA-A33C-45B2-8FC6-C419AD6468E4", "versionEndIncluding": "10.4"}, {"criteria": "cpe:2.3:a:autonomy:keyview_viewer_sdk:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2FE65E34-052C-4614-BA69-71D96EBC65E0"}, {"criteria": "cpe:2.3:a:autonomy:keyview_viewer_sdk:9.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8D56C0E-3403-4B91-A064-69E46770FBBF"}, {"criteria": "cpe:2.3:a:autonomy:keyview_viewer_sdk:10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBB6C6D0-0848-45D0-ACA7-03B46F42AE76"}, {"criteria": "cpe:2.3:a:autonomy:keyview_viewer_sdk:10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E50CAF0-1F3A-4F57-A8DA-91B7840BBE3F"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D4B2601-B62F-4235-BFFD-281235737450"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "273DF27B-9441-4925-BD7E-5709D7D059EE"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E234AD1-7202-421E-82C8-880E84876021"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55D037CC-1207-48E2-882E-8B236EE7138F"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5059BEF2-84EB-4B5F-84F5-9E3200B068F3"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB71B7AA-957B-46A6-9BC9-CE23EC721189"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46CF28C0-51AD-4783-B1F0-205DF64D133A"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C0015A2-A70E-4B0C-B59A-44F5F611293D"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1360A50E-C1E1-4690-874A-04CC7C1A77CC"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D94927A9-61FD-459F-9A6D-E581A4AF505C"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3B32BA2-9EB7-4294-A857-226A5B1CC401"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF64CA16-6C20-42E1-BA68-BD63A873BFA9"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "12D7DD7B-CA90-44A5-9B7B-4A4985150689"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C63D40DF-C6F3-4502-9816-939265F10532"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5:*:fp2:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8B5BF9A-F8A7-4C2B-B093-8226D0ED1425"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5:*:fp3:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "04CB50C2-2B01-4A68-BE96-1127B9954F38"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4598C4A8-B19D-4562-A5B5-D3B090F0C8D7"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.6:*:fp2:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66D334E1-9326-4D0A-8D87-572F3E6B44BD"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68AEB13D-C7C6-426F-8484-85EFF7245DF5"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94646433-DE15-4214-9C78-7D1DAB5A12D9"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3449A490-865A-4262-8482-429DEF455644"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2:*:fp1:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5614CD60-7690-47E6-AEB3-FB0151EB264C"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F01C5CFC-7FB8-4D29-95AC-8EF59B0C170D"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "692E295E-E650-42D5-AF7A-D6276C3D76E0"}, {"criteria": "cpe:2.3:a:symantec:altiris_deployment_solution:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D6701EB-AF87-4B63-A8B5-AA27C28DFFB1"}, {"criteria": "cpe:2.3:a:symantec:brightmail:5.0:*:appliance:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1BE16AC-118D-4BA0-AE37-3DB2E4E417DD"}, {"criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F945149-43CC-4EAC-9A78-C6A3BA6FAF9D"}, {"criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D42BEF4-9BB4-4CCF-9395-C306C3CEBB0C"}, {"criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.1:*:linux:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC2C0DBF-382C-4F96-8497-2FABD7CB67C3"}, {"criteria": "cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.1:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42A91935-15AC-4F64-AD3D-EFAD08955562"}, {"criteria": "cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37076C05-12CE-484C-AB10-711BABFF6992"}, {"criteria": "cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A5F3BAC-B470-4FB7-88AF-47A33D46EF00"}, {"criteria": "cpe:2.3:a:symantec:enforce:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFD0A99F-6B8A-4BB9-B8A7-40BB5D7B7CFB"}, {"criteria": "cpe:2.3:a:symantec:enforce:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8960720-5DF0-4F4C-9603-09A85FAF843D"}, {"criteria": "cpe:2.3:a:symantec:enforce:8.1:*:linux:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E9D9CE3-109C-4035-9934-2B457268985D"}, {"criteria": "cpe:2.3:a:symantec:enforce:8.1:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E258E769-38CC-4E62-8158-3D549263ED1C"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0:*:appliance:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0648861C-A58E-4103-8720-4480C2F098FF"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C890707A-D2DF-403A-87CB-2AB01E85D8B5"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E7788BD-652E-4306-AED0-6AE7F9A07836"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.0.24:*:appliance:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "977786AB-A76C-4A1C-8999-BF4A5E08F8BE"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8430D5E-A8A7-4724-8A6B-B5E2CA437729"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.181:*:smtp:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D602A441-863D-4E90-A01D-57C41725D008"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.182:*:smtp:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A792A9C1-95EF-4CE2-B14F-3DEE09BFAF8A"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.189:*:smtp:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D9C7B86-7F9A-4DF8-A4DF-9A7CA5991D91"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.1.200:*:smtp:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0117D61C-DEE6-4803-9CF8-27EEBAA493CA"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.10:*:microsoft_exchange:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BF163AF-E470-492A-940C-B2FB37AA2322"}, {"criteria": "cpe:2.3:a:symantec:mail_security:5.0.11:*:microsoft_exchange:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95D5B1CF-6C20-4D66-9D30-631441FA953B"}, {"criteria": "cpe:2.3:a:symantec:mail_security:6.0.6:microsoft_exchange:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BBAE476-DB98-4464-81DF-8EC386E808B4"}, {"criteria": "cpe:2.3:a:symantec:mail_security:6.0.7:microsoft_exchange:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "225BA7A2-8C45-42F1-921B-105CF8F0F22A"}, {"criteria": "cpe:2.3:a:symantec:mail_security:7.5..4.29:*:domino:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1E6B709-B44B-47AC-A7FF-0C248D777D5F"}, {"criteria": "cpe:2.3:a:symantec:mail_security:7.5.3.25:*:domino:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07FADB30-A418-43C5-A798-4769C5350E7B"}, {"criteria": "cpe:2.3:a:symantec:mail_security:7.5.5.32:*:domino:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70F1A708-9914-4875-B594-D8A9D65182D8"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}