Symantec Products KeyView XLS Handling Integer Overflow Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 27 Aug 2009 4918 Views

RISK: Medium Risk

Medium Risk

A vulnerability has been identified in various Symantec products, which could be exploited by attackers to compromise a vulnerable system. This issue is caused by an integer overflow error in the Autonomy KeyView Viewer for Excel (xlssr.dll) when processing XLS documents containing a malformed Shared String Table (SST) record, which could be exploited by attackers to crash an affected application or execute arbitrary code by tricking a user into viewing a specially crafted Excel file.

Note: In certain of the affected Symantec products, the Autonomy KeyView module processes have been separated from the Symantec application processes and are executed with limited privileges.

Impact

  • Remote Code Execution

System / Technologies affected

  • Symantec Mail Security for Domino version 8.0
  • Symantec Mail Security for Domino version 7.5.6
  • Symantec Mail Security for Domino version 7.5.5.32
  • Symantec Mail Security for Domino version 7.5.4.29
  • Symantec Mail Security for Domino version 7.5.3.25
  • Symantec Mail Security for Microsoft Exchange version 6.0.8
  • Symantec Mail Security for Microsoft Exchange version 6.0.7
  • Symantec Mail Security for Microsoft Exchange version 6.0.6
  • Symantec Mail Security for Microsoft Exchange version 5.0.12
  • Symantec Mail Security for Microsoft Exchange version 5.0.11
  • Symantec Mail Security for Microsoft Exchange version 5.0.10
  • Symantec Mail Security for SMTP versions 5.0.x
  • Symantec Mail Security Appliance/ Symantec BrightMail Appliance versions 5.0.x and later
  • Symantec BrightMail Appliance version 8.0.0
  • Symantec BrightMail Appliance version 8.0.1
  • Symantec Data Loss Prevention Enforce/Detection Servers version 7.2
  • Symantec Data Loss Prevention Enforce/Detection Servers for Windows version 8.1.1
  • Symantec Data Loss Prevention Enforce/Detection Servers for Windows version 9.0.1
  • Symantec Data Loss Prevention Enforce/Detection Servers for Linux version 8.1.1
  • Symantec Data Loss Prevention Enforce/Detection Servers for Linux version 9.0.1
  • Symantec Data Loss Prevention Endpoint Agents version 8.1.1
  • Symantec Data Loss Prevention Endpoint Agents version 9.0.1

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Share with

Previous

IBM Lotus Notes File Viewer for Excel Code Execution Vulnerability

26 Aug 2009 4806 Views

Next

Google Chrome V8 Javascript Engine Memory Read Vulnerability

27 Aug 2009 4865 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY