Vulnerability Name:

CVE-2009-3037 (CCN-52733)

Assigned:2009-08-25
Published:2009-08-25
Updated:2013-02-07
Summary:Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2009-3037

Source: CCN
Type: SA36421
Symantec Products KeyView XLS Processing Buffer Overflow

Source: CCN
Type: SA36422
Autonomy KeyView SDK XLS Processing Buffer Overflow

Source: CCN
Type: SA36472
Lotus Notes 6 Keyview XLS Processing Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
36472

Source: CCN
Type: SA36474
Lotus Notes Keyview XLS Processing Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
36474

Source: CCN
Type: IBM SPR# PRAD7RSL2H
Potential security issue with Lotus Notes file viewer for Microsoft Excel

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21396492

Source: CCN
Type: OSVDB ID: 57334
Autonomy Keyview XLS Viewer (xlssr.dll) XLS File SST Record Handling Overflow

Source: BID
Type: UNKNOWN
36042

Source: CCN
Type: BID-36042
Autonomy KeyView Module Excel Document Processing Buffer Overflow Vulnerability

Source: BID
Type: UNKNOWN
36124

Source: CCN
Type: BID-36124
RETIRED: IBM Lotus Notes Keyview XLS File Viewer Remote Buffer Overflow Vulnerability

Source: CONFIRM
Type: UNKNOWN
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090825_00

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2009-2389

Source: XF
Type: UNKNOWN
lotusnotes-xlssr-bo(52733)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:lotus_notes:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.9a:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:5.02:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.5:*:fp2:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.5:*:fp3:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:6.5.6:*:fp2:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0.2:*:fp1:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:8.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:brightmail_appliance:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:brightmail_appliance:8.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:brightmail_appliance:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_detection_servers:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.1.1:*:linux:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_detection_servers:8.1.1:*:windows:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_detection_servers:9.0.1:*:linux:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_detection_servers:9.0.1:*:windows:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_endpoint_agents:8.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:data_loss_prevention_endpoint_agents:9.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.1.181:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.1.182:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.1.189:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.1.200:*:smtp:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.10:*:microsoft_exchange:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.11:*:microsoft_exchange:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:5.0.12:*:microsoft_exchange:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:6.0.6:*:microsoft_exchange:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:6.0.7:*:microsoft_exchange:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:6.0.8:*:microsoft_exchange:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:7.5.3.25:*:domino:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:7.5.4.29:*:domino:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:7.5.5.32:*:domino:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:7.5.6:*:domino:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security:8.0:*:domino:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security_appliance:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security_appliance:5.0.0.24:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:mail_security_appliance:5.0.0.36:*:*:*:*:*:*:*
  • AND
  • cpe:/a:autonomy:keyview:*:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    ibm lotus notes 5.0
    ibm lotus notes 5.0.1
    ibm lotus notes 5.0.2
    ibm lotus notes 5.0.3
    ibm lotus notes 5.0.4
    ibm lotus notes 5.0.5
    ibm lotus notes 5.0.6
    ibm lotus notes 5.0.9a
    ibm lotus notes 5.0.10
    ibm lotus notes 5.0.11
    ibm lotus notes 5.0.12
    ibm lotus notes 5.02
    ibm lotus notes 6.0
    ibm lotus notes 6.0.1
    ibm lotus notes 6.0.2
    ibm lotus notes 6.0.3
    ibm lotus notes 6.0.4
    ibm lotus notes 6.0.5
    ibm lotus notes 6.5
    ibm lotus notes 6.5.1
    ibm lotus notes 6.5.2
    ibm lotus notes 6.5.3
    ibm lotus notes 6.5.4
    ibm lotus notes 6.5.5
    ibm lotus notes 6.5.5
    ibm lotus notes 6.5.5
    ibm lotus notes 6.5.6
    ibm lotus notes 6.5.6
    ibm lotus notes 7.0
    ibm lotus notes 7.0.0
    ibm lotus notes 7.0.1
    ibm lotus notes 7.0.2
    ibm lotus notes 7.0.2
    ibm lotus notes 7.0.3
    ibm lotus notes 8.0
    ibm lotus notes 8.0.0
    ibm lotus notes 8.0.1
    ibm lotus notes 8.5
    symantec brightmail appliance 5.0
    symantec brightmail appliance 8.0.0
    symantec brightmail appliance 8.0.1
    symantec data loss prevention detection servers 7.2
    symantec data loss prevention detection servers 8.1.1
    symantec data loss prevention detection servers 8.1.1
    symantec data loss prevention detection servers 9.0.1
    symantec data loss prevention detection servers 9.0.1
    symantec data loss prevention endpoint agents 8.1.1
    symantec data loss prevention endpoint agents 9.0.1
    symantec mail security 5.0
    symantec mail security 5.0.0
    symantec mail security 5.0.1
    symantec mail security 5.0.1.181
    symantec mail security 5.0.1.182
    symantec mail security 5.0.1.189
    symantec mail security 5.0.1.200
    symantec mail security 5.0.10
    symantec mail security 5.0.11
    symantec mail security 5.0.12
    symantec mail security 6.0.6
    symantec mail security 6.0.7
    symantec mail security 6.0.8
    symantec mail security 7.5.3.25
    symantec mail security 7.5.4.29
    symantec mail security 7.5.5.32
    symantec mail security 7.5.6
    symantec mail security 8.0
    symantec mail security appliance 5.0
    symantec mail security appliance 5.0.0.24
    symantec mail security appliance 5.0.0.36
    autonomy keyview *
    ibm lotus notes 6.5
    ibm lotus notes 7.0
    ibm lotus notes 8.0
    ibm lotus notes 8.5