Description
Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment.
Affected products
- Autonomy / keyview
- ibm / lotus_notes5.0.1 – 5.0.1
- ibm / lotus_notes5.0.2 – 5.0.2
- ibm / lotus_notes5.0.3 – 5.0.3
- ibm / lotus_notes5.0.4 – 5.0.4
- ibm / lotus_notes5.0.5 – 5.0.5
- ibm / lotus_notes5.0.6 – 5.0.6
- ibm / lotus_notes5.0.9a – 5.0.9a
- ibm / lotus_notes5.0.10 – 5.0.10
- ibm / lotus_notes5.0.11 – 5.0.11
- ibm / lotus_notes5.0.12 – 5.0.12
- ibm / lotus_notes5.02 – 5.02
- ibm / lotus_notes6.0 – 6.0
- ibm / lotus_notes6.0.1 – 6.0.1
- ibm / lotus_notes6.0.2 – 6.0.2
- ibm / lotus_notes6.0.3 – 6.0.3
- ibm / lotus_notes5.0 – 5.0
- ibm / lotus_notes6.0.5 – 6.0.5
- ibm / lotus_notes6.5 – 6.5
- ibm / lotus_notes6.5.1 – 6.5.1
- ibm / lotus_notes6.5.2 – 6.5.2
- ibm / lotus_notes6.5.3 – 6.5.3
- ibm / lotus_notes6.5.4 – 6.5.4
- ibm / lotus_notes6.5.5 – 6.5.5
- ibm / lotus_notes6.5.5 – 6.5.5
- ibm / lotus_notes6.5.5 – 6.5.5
- ibm / lotus_notes6.5.6 – 6.5.6
- ibm / lotus_notes6.5.6 – 6.5.6
- ibm / lotus_notes7.0 – 7.0
- ibm / lotus_notes7.0.0 – 7.0.0
- ibm / lotus_notes7.0.1 – 7.0.1
- ibm / lotus_notes7.0.2 – 7.0.2
- ibm / lotus_notes7.0.2 – 7.0.2
- ibm / lotus_notes7.0.3 – 7.0.3
- ibm / lotus_notes8.0 – 8.0
- ibm / lotus_notes8.0.0 – 8.0.0
- ibm / lotus_notes8.0.1 – 8.0.1
- ibm / lotus_notes8.5 – 8.5
- ibm / lotus_notes6.0.4 – 6.0.4
- Symantec / brightmail_appliance8.0.0 – 8.0.0
- Symantec / brightmail_appliance8.0.1 – 8.0.1
- Symantec / brightmail_appliance5.0 – 5.0
- Symantec / data_loss_prevention_detection_servers8.1.1 – 8.1.1
- Symantec / data_loss_prevention_detection_servers8.1.1 – 8.1.1
- Symantec / data_loss_prevention_detection_servers9.0.1 – 9.0.1
- Symantec / data_loss_prevention_detection_servers9.0.1 – 9.0.1
- Symantec / data_loss_prevention_detection_servers7.2 – 7.2
- Symantec / data_loss_prevention_endpoint_agents9.0.1 – 9.0.1
- Symantec / data_loss_prevention_endpoint_agents8.1.1 – 8.1.1
- Symantec / mail_security5.0 – 5.0
- Symantec / mail_security5.0.1 – 5.0.1
- Symantec / mail_security5.0.1.181 – 5.0.1.181
- Symantec / mail_security5.0.1.182 – 5.0.1.182
- Symantec / mail_security5.0.1.189 – 5.0.1.189
- Symantec / mail_security5.0.1.200 – 5.0.1.200
- Symantec / mail_security5.0.10 – 5.0.10
- Symantec / mail_security5.0.11 – 5.0.11
- Symantec / mail_security5.0.12 – 5.0.12
- Symantec / mail_security6.0.6 – 6.0.6
- Symantec / mail_security6.0.7 – 6.0.7
- Symantec / mail_security6.0.8 – 6.0.8
- Symantec / mail_security7.5.3.25 – 7.5.3.25
- Symantec / mail_security7.5.4.29 – 7.5.4.29
- Symantec / mail_security7.5.5.32 – 7.5.5.32
- Symantec / mail_security7.5.6 – 7.5.6
- Symantec / mail_security8.0 – 8.0
- Symantec / mail_security5.0.0 – 5.0.0
- Symantec / mail_security_appliance5.0.0.24 – 5.0.0.24
- Symantec / mail_security_appliance5.0.0.36 – 5.0.0.36
- Symantec / mail_security_appliance5.0 – 5.0
References
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/2389
- MISChttp://www.securityfocus.com/bid/36042
- VENDOR_ADVISORYhttp://secunia.com/advisories/36472
- VENDOR_ADVISORYhttp://secunia.com/advisories/36474
- MISChttp://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090825_00
- MISChttp://www-01.ibm.com/support/docview.wss?uid=swg21396492
- MISChttp://www.securityfocus.com/bid/36124