Autonomy KeyView Module OLE Processing Buffer Overflow Vulnerability

Autonomy KeyView module is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data before copying it to insufficiently sized buffers.

Exploiting this issue will allow an attacker to corrupt memory and cause denial-of-service conditions and may potentially allow the execution of arbitrary code in the context of an application using the module.

Multiple products using the KeyView module are affected, including:

Symantec Mail Security for Domino
Symantec Mail Security for Microsoft Exchange
Symantec Mail Security for SMTP
Symantec Brightmail Gateway
Symantec Data Loss Prevention Detection Servers
Symantec Data Loss Prevention Endpoint Agents
Symantec IM Manager


 

Privacy Statement
Copyright 2010, SecurityFocus