| Vulnerability Name: | CVE-2007-6593 (CCN-38645) | ||||||||
| Assigned: | 2007-11-27 | ||||||||
| Published: | 2007-11-27 | ||||||||
| Updated: | 2018-10-15 | ||||||||
| Summary: | Multiple stack-based buffer overflows in l123sr.dll in Autonomy (formerly Verity) KeyView SDK, as used by IBM Lotus Notes 5.x through 8.x, allow user-assisted remote attackers to execute arbitrary code via the (1) Length and (2) Value fields for certain Types in a Lotus 1-2-3 (.123) file in the Worksheet File (WKS) format, as demonstrated by a file with a crafted SRANGE record, a different vulnerability than CVE-2007-5909. | ||||||||
| CVSS v3 Severity: | 7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 8.8 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:N) 6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:N/E:POC/RL:OF/RC:C)
5.3 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-119 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2007-6593 Source: FULLDISC Type: UNKNOWN 20071127 CORE-2007-0821: Lotus Notes buffer overflow in the Lotus WorkSheet file processor Source: CCN Type: SA27835 IBM Lotus Notes Lotus 1-2-3 File Viewer Buffer Overflows Source: SECUNIA Type: Vendor Advisory 27835 Source: CCN Type: SA27836 IBM Lotus Notes 5 / 6 Lotus 1-2-3 File Viewer Buffer Overflows Source: SECUNIA Type: Vendor Advisory 27836 Source: CCN Type: SA27849 Autonomy Keyview SDK Lotus 1-2-3 File Viewer Buffer Overflows Source: SECUNIA Type: Vendor Advisory 27849 Source: CCN Type: SA27871 Symantec Mail Security Lotus 1-2-3 File Viewer Buffer Overflows Source: SREASON Type: UNKNOWN 3499 Source: CCN Type: SECTRACK ID: 1019002 IBM Lotus Notes Buffer Overflows in Processing Lotus 1-2-3 Attachments Let Remote Users Execute Arbitrary Code Source: SECTRACK Type: UNKNOWN 1019002 Source: CCN Type: SECTRACK ID: 1019096 Symantec Mail Security Buffer Overflows in Processing Lotus 1-2-3 Attachments Let Remote Users Execute Arbitrary Code Source: CCN Type: IBM Technote (FAQ) 1285600 Buffer overflow vulnerability in Lotus Notes file viewer for Lotus 1-2-3 attachments Source: MISC Type: UNKNOWN http://www.coresecurity.com/index.php5?action=item&id=2008 Source: CCN Type: CoreLabs Advisory CORE-2007-0821 Lotus Notes buffer overflow in the Lotus WorkSheet file processor Source: CONFIRM Type: UNKNOWN http://www.ibm.com/support/docview.wss?rs=475&uid=swg21285600 Source: BUGTRAQ Type: UNKNOWN 20071127 CORE-2007-0821: Lotus Notes buffer overflow in the Lotus WorkSheet file processor Source: BID Type: UNKNOWN 26604 Source: CCN Type: BID-26604 Autonomy KeyView Lotus 1-2-3 File Multiple Buffer Overflow Vulnerabilities Source: SECTRACK Type: UNKNOWN 1019096 Source: VUPEN Type: UNKNOWN ADV-2007-4012 Source: VUPEN Type: UNKNOWN ADV-2007-4020 Source: XF Type: UNKNOWN lotus-123fileviewer-bo(38645) Source: XF Type: UNKNOWN lotus-123fileviewer-bo(38645) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||