10

CVE-2009-3032

Exploit

EPSS 1.9%
Published 05.03.2010 19:30:00
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Lotus Notes Version8.5

Symantec ≫ Brightmail Gateway Version8.0

Symantec ≫ Data Loss Prevention Detection Servers Version8.1.1 Editionlinux

Symantec ≫ Data Loss Prevention Detection Servers Version8.1.1 Editionwindows

Symantec ≫ Data Loss Prevention Detection Servers Version9.0.1 Editionlinux

Symantec ≫ Data Loss Prevention Detection Servers Version9.0.1 Editionwindows

Symantec ≫ Data Loss Prevention Detection Servers Version10.0 Editionlinux

Symantec ≫ Data Loss Prevention Detection Servers Version10.0 Editionwindows

Symantec ≫ Data Loss Prevention Endpoint Agents Version8.1.1

Symantec ≫ Data Loss Prevention Endpoint Agents Version9.0.1

Symantec ≫ Data Loss Prevention Endpoint Agents Version10.0

Symantec ≫ Im Manager 2007

Symantec ≫ Mail Security Version5.0.0 Editionsmtp

Symantec ≫ Mail Security Version5.0.1.181 Editionsmtp

Symantec ≫ Mail Security Version5.0.1.182 Editionsmtp

Symantec ≫ Mail Security Version5.0.1.189 Editionsmtp

Symantec ≫ Mail Security Version5.0.11 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version5.0.12 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version5.0.13 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version6.0.6 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version6.0.7 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version6.0.8 Editionmicrosoft_exchange

Symantec ≫ Mail Security Version7.5.3.25 Editiondomino

Symantec ≫ Mail Security Version7.5.4.29 Editiondomino

Symantec ≫ Mail Security Version7.5.5.32 Editiondomino

Symantec ≫ Mail Security Version7.5.6 Editiondomino

Symantec ≫ Mail Security Version7.5.7 Editiondomino

Symantec ≫ Mail Security Version7.5.8 Editiondomino

Symantec ≫ Mail Security Version8.0 Editiondomino

Symantec ≫ Mail Security Version8.0.1 Editiondomino

Symantec ≫ Mail Security Version8.0.2 Editiondomino

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.9%	0.825

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=858

Exploit

http://www-01.ibm.com/support/docview.wss?uid=swg21440812

http://www.securityfocus.com/bid/38468

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100304_00

https://nvd.nist.gov/vuln/detail/CVE-2009-3032

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-3032

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-3032

EUVD