9.3

CVE-2007-5406

kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, does not properly parse long tokens, which allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted .ag file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmLotus Notes Version6.0
IbmLotus Notes Version6.5
IbmLotus Notes Version7.0
IbmLotus Notes Version8.0
IbmLotus Notes Version8.0.1
SymantecMail Security Editiondomino Version <= 7.5
SymantecMail Security Version5.0
SymantecMail Security Version5.0 Editionmicrosoft_exchange
SymantecMail Security Version5.0.0 Editionsmtp
SymantecMail Security Version5.0.1 Editionsmtp
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3% 0.856
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/28209
Vendor Advisory
http://secunia.com/advisories/28210
Vendor Advisory
http://www.securityfocus.com/bid/28454
http://www.vupen.com/english/advisories/2008/1153
http://www.vupen.com/english/advisories/2008/1156
http://secunia.com/advisories/27763
Vendor Advisory
http://secunia.com/advisories/28140
Vendor Advisory
http://secunia.com/advisories/29342
Vendor Advisory
http://secunia.com/secunia_research/2007-95/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-96/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-97/advisory/
Vendor Advisory
http://secunia.com/secunia_research/2007-98/advisory/
Vendor Advisory
http://securitytracker.com/id?1019805
http://www.securityfocus.com/archive/1/490825/100/0/threaded
http://www.securityfocus.com/archive/1/490837/100/0/threaded
http://www.securityfocus.com/archive/1/490838/100/0/threaded
http://www.securityfocus.com/archive/1/490839/100/0/threaded
http://www.securitytracker.com/id?1019844
http://www.vupen.com/english/advisories/2008/1154
https://exchange.xforce.ibmcloud.com/vulnerabilities/41722