Vulnerability CVE-2008-4564 - CERT Civis.Net

Vulnerability Name:

CVE-2008-4564 (CCN-49284)

Assigned:

2008-10-14

Published:

2009-03-17

Updated:

2017-08-08

Summary:

Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2008-4564

Source: IDEFENSE
Type: UNKNOWN
20090317 Autonomy KeyView Word Perfect File Parsing Buffer Overflow Vulnerability

Source: OSVDB
Type: UNKNOWN
52713

Source: CCN
Type: SA34303
Lotus Notes 6 File Viewer "wp6sr.dll" Buffer Overflow

Source: SECUNIA
Type: UNKNOWN
34303

Source: CCN
Type: SA34307
Symantec Products KeyView "wp6sr.dll" Buffer Overflow

Source: SECUNIA
Type: Vendor Advisory
34307

Source: CCN
Type: SA34318
Autonomy KeyView SDK "wp6sr.dll" Buffer Overflow

Source: SECUNIA
Type: UNKNOWN
34318

Source: CCN
Type: SA34355
Lotus Notes File Viewer "wp6sr.dll" Buffer Overflow

Source: SECUNIA
Type: UNKNOWN
34355

Source: CCN
Type: SYM09-004
Symantec Products Update Vulnerable Autonomy KeyView Module

Source: CCN
Type: SECTRACK ID: 1021856
Symantec Data Loss Prevention Buffer Overflow in Autonomy KeyView Module Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1021856

Source: CCN
Type: SECTRACK ID: 1021857
Symantec Mail Security Buffer Overflow in Autonomy KeyView Module Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1021857

Source: CCN
Type: SECTRACK ID: 1021859
IBM Lotus Notes Buffer Overflows in File Viewer for WordPerfect Lets Remote Users Execute Arbitrary Code

Source: CONFIRM
Type: Vendor Advisory
http://www-01.ibm.com/support/docview.wss?rs=463&uid=swg21377573

Source: CCN
Type: IBM Security Bulletin 1377573
Potential Security Issue with Lotus Notes File Viewer for WordPerfect

Source: CCN
Type: Autonomy Web site
Autonomy - The Leader in Meaning-Based Computing & Enterprise Search

Source: CCN
Type: US-CERT VU#276563
Autonomy KeyView SDK buffer overflow vulnerability

Source: CERT-VN
Type: US Government Resource
VU#276563

Source: CCN
Type: OSVDB ID: 52713
Autonomy KeyView SDK wp6sr.dll Word Perfect Document Handling Overflow

Source: BID
Type: UNKNOWN
34086

Source: CCN
Type: BID-34086
Autonomy KeyView Module 'wp6sr.dll' Buffer Overflow Vulnerability

Source: SECTRACK
Type: UNKNOWN
1021859

Source: CONFIRM
Type: Vendor Advisory
http://www.symantec.com/avcenter/security/Content/2009.03.17a.html

Source: VUPEN
Type: Vendor Advisory
ADV-2009-0744

Source: VUPEN
Type: UNKNOWN
ADV-2009-0756

Source: VUPEN
Type: UNKNOWN
ADV-2009-0757

Source: CCN
Type: Autonomy Customers Support Web site
Autonomy Customers Support

Source: CONFIRM
Type: UNKNOWN
https://customers.autonomy.com/support/secure/docs/Updates/Keyview/Filter%20SDK/10.4/kv_update_nti40_10.4.zip.readme.html

Source: XF
Type: UNKNOWN
autonomy-keyview-wp6sr-bo(49284)

Source: XF
Type: UNKNOWN
autonomy-keyview-wp6sr-bo(49284)

Source: CCN
Type: iDefense PUBLIC ADVISORY: 03.17.09
Autonomy KeyView Word Perfect File Parsing Buffer Overflow Vulnerability

Vulnerable Configuration:

Configuration 1:

cpe:/a:autonomy:keyview_export_sdk:2.0:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_export_sdk:9.2.0:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_export_sdk:10:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_export_sdk:10.3:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_export_sdk:*:*:*:*:*:*:*:* (Version <= 10.4)

OR cpe:/a:autonomy:keyview_filter_sdk:2.0:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_filter_sdk:9.2.0:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_filter_sdk:10:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_filter_sdk:10.3:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_filter_sdk:*:*:*:*:*:*:*:* (Version <= 10.4)

OR cpe:/a:autonomy:keyview_viewer_sdk:2.0:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_viewer_sdk:9.2.0:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_viewer_sdk:10:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_viewer_sdk:10.3:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_viewer_sdk:*:*:*:*:*:*:*:* (Version <= 10.4)

OR cpe:/a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:5.0.12:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.0.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.5:*:fp2:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.5:*:fp3:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:6.5.6:*:fp2:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:7.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:7.0.2:*:fp1:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:altiris_deployment_solution:*:*:*:*:*:*:*:*

OR cpe:/a:symantec:brightmail:5.0:*:appliance:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:7.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.1:*:linux:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.1:*:windows:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_endpoint_agents:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_endpoint_agents:8.1:*:*:*:*:*:*:*

OR cpe:/a:symantec:enforce:7.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:enforce:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:enforce:8.1:*:linux:*:*:*:*:*

OR cpe:/a:symantec:enforce:8.1:*:windows:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0:*:appliance:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.0.24:*:appliance:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.181:*:smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.182:*:smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.189:*:smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.200:*:smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.10:*:microsoft_exchange:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.11:*:microsoft_exchange:*:*:*:*:*

OR cpe:/a:symantec:mail_security:6.0.6:microsoft_exchange:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:6.0.7:microsoft_exchange:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:7.5..4.29:*:domino:*:*:*:*:*

OR cpe:/a:symantec:mail_security:7.5.3.25:*:domino:*:*:*:*:*

OR cpe:/a:symantec:mail_security:7.5.5.32:*:domino:*:*:*:*:*

Configuration CCN 1:

cpe:/a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1::smtp:*:*:*:*:*

OR cpe:/a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.0::smtp:*:*:*:*:*

OR cpe:/a:autonomy:keyview_export_sdk:10.3:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_filter_sdk:10.3:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_viewer_sdk:10.3:*:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.0.24:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_viewer_sdk:10:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_filter_sdk:10:*:*:*:*:*:*:*

OR cpe:/a:autonomy:keyview_export_sdk:10:*:*:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.189::smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.181::smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.182::smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:5.0.1.200::smtp:*:*:*:*:*

OR cpe:/a:symantec:mail_security:7.5.5.32::domino:*:*:*:*:*

OR cpe:/a:symantec:mail_security:7.5.4.29::domino:*:*:*:*:*

OR cpe:/a:symantec:mail_security:7.5.3.25::domino:*:*:*:*:*

OR cpe:/a:symantec:enforce:8.1::windows:*:*:*:*:*

OR cpe:/a:symantec:enforce:8.1::linux:*:*:*:*:*

OR cpe:/a:symantec:enforce:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:enforce:7.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_endpoint_agents:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_endpoint_agents:8.1:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.1::windows:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.1::linux:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:data_loss_prevention_detection_servers:7.0:*:*:*:*:*:*:*

OR cpe:/a:symantec:brightmail_appliance:5.0:*:*:*:*:*:*:*

Denotes that component is vulnerable