| Check Point Reference: |
CPAI-2009-233 |
| Date Published: |
24 Sep 2009 |
| Severity: |
Critical
|
| Last Updated: |
Thursday 01 January, 2009 |
| Source: |
Secunia Advisory: 36472 |
| Industry Reference: | CVE-2009-3037 |
| Protection Provided by: |
|
| Who is Vulnerable? | Symantec Brightmail Appliance 8.0.x prior to 8.0.2
Symantec Data Loss Prevention Endpoint Agents 8.1.x prior to 8.1.10.2
Symantec Data Loss Prevention Endpoint Agents 9.0.x prior to 9.0.18.9
Symantec Data Loss Prevention Enforce/Detection Servers 7.2.x prior to 7.2.0.40
Symantec Data Loss Prevention Enforce/Detection Servers 8.1.x prior to 8.1.10.1
Symantec Data Loss Prevention Enforce/Detection Servers 9.0.x prior to 9.0.18.5
Symantec Mail Security for Domino 7.5.x prior to 7.5.7
Symantec Mail Security for Domino 8.0.x prior to 8.0.1
Symantec Mail Security for Microsoft Exchange 5.0.x prior to 5.0.13
Symantec Mail Security for Microsoft Exchange 6.0.x prior to 6.0.9
Symantec Mail Security for SMTP 5.0.x prior to patch level 205
IBM Lotus Notes 5.x
IBM Lotus Notes 6.x
IBM Lotus Notes 7.x
IBM Lotus Notes 8.0.x
IBM Lotus Notes 8.5.x |
| Vulnerability Description |
An integer overflow vulnerability exists in multiple products using Autonomy KeyView SDK (File Viewer for Excel). A remote attacker could exploit this vulnerability by enticing the target user to open or view a malicious Excel file with the vulnerable version of the product. Successful exploitation could result in execution of arbitrary code. |
| Update/Patch Avaliable | No patch has been available from Symantec at the time of writing.
IBM has released an advisory: IBM |
| Vulnerability Details | The vulnerability is due to an error when parsing a Shared String Table (SST) record inside of an Excel file. Remote attackers can exploit this vulnerability by enticing a target user to open or view a malicious Excel file with the vulnerable version of the product. |
Feedback