CVE-2007-6020 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-6020
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6020

Description: Multiple stack-based buffer overflows in foliosr.dll in the Folio Flat File speed reader in Autonomy (formerly Verity) KeyView 10.3.0.0, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, allow remote attackers to execute arbitrary code via a long attribute value in a (1) DI, (2) FD, (3) FT, (4) JD, (5) JL, (6) LE, (7) OB, (8) OD, (9) OL, (10) PN, (11) PS, (12) PW, (13) RD, (14) QL, or (15) TS tag in a .fff file.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/41716 ST 1019805 1019841 SAID Secunia Advisory: SA27763 Secunia Advisory: SA28140 Secunia Advisory: SA28209 Secunia Advisory: SA28210 Secunia Advisory: SA29342 MISC http://secunia.com/secunia_research/2007-107/advisory/ http://secunia.com/secunia_research/2007-106/advisory/ http://secunia.com/secunia_research/2007-105/advisory/ http://secunia.com/secunia_research/2007-104/advisory/ CONFIRM http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453 http://www.symantec.com/avcenter/security/Content/2008.04.08e.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/490827/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/490830/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/490831/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/490829/100/0/threaded BID 28454

Return to the previous page.