CVE-2008-0066

Multiple buffer overflows in htmsr.dll in the HTML speed reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes 7.0.2 and 7.0.3, allow remote attackers to execute arbitrary code via an HTML document with (1) "large chunks of data," or a long URL in the (2) BACKGROUND attribute of a BODY element or (3) SRC attribute of an IMG element.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/28140	Vendor Advisory
http://secunia.com/advisories/28209	Vendor Advisory
http://secunia.com/advisories/28210	Vendor Advisory
http://secunia.com/secunia_research/2008-3/advisory/	Vendor Advisory
http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453
http://www.securityfocus.com/archive/1/490828/100/0/threaded
http://www.securityfocus.com/bid/28454
http://www.securitytracker.com/id?1019843
http://www.vupen.com/english/advisories/2008/1153
http://www.vupen.com/english/advisories/2008/1156
https://exchange.xforce.ibmcloud.com/vulnerabilities/41724
http://secunia.com/advisories/28140	Vendor Advisory
http://secunia.com/advisories/28209	Vendor Advisory
http://secunia.com/advisories/28210	Vendor Advisory
http://secunia.com/secunia_research/2008-3/advisory/	Vendor Advisory
http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453
http://www.securityfocus.com/archive/1/490828/100/0/threaded
http://www.securityfocus.com/bid/28454
http://www.securitytracker.com/id?1019843
http://www.vupen.com/english/advisories/2008/1153
http://www.vupen.com/english/advisories/2008/1156
https://exchange.xforce.ibmcloud.com/vulnerabilities/41724

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:autonomy:keyview::::::::
	cpe:2.3:a:ibm:lotus_notes:7.0.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:7.0.3:::::::*

History

21 Nov 2024, 00:41

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/28140 - Vendor Advisory~~	() http://secunia.com/advisories/28140 - Vendor Advisory
References	~~() http://secunia.com/advisories/28209 - Vendor Advisory~~	() http://secunia.com/advisories/28209 - Vendor Advisory
References	~~() http://secunia.com/advisories/28210 - Vendor Advisory~~	() http://secunia.com/advisories/28210 - Vendor Advisory
References	~~() http://secunia.com/secunia_research/2008-3/advisory/ - Vendor Advisory~~	() http://secunia.com/secunia_research/2008-3/advisory/ - Vendor Advisory
References	~~() http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453 -~~	() http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453 -
References	~~() http://www.securityfocus.com/archive/1/490828/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/490828/100/0/threaded -
References	~~() http://www.securityfocus.com/bid/28454 -~~	() http://www.securityfocus.com/bid/28454 -
References	~~() http://www.securitytracker.com/id?1019843 -~~	() http://www.securitytracker.com/id?1019843 -
References	~~() http://www.vupen.com/english/advisories/2008/1153 -~~	() http://www.vupen.com/english/advisories/2008/1153 -
References	~~() http://www.vupen.com/english/advisories/2008/1156 -~~	() http://www.vupen.com/english/advisories/2008/1156 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/41724 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/41724 -

Information

Published : 2008-04-10 18:05

Updated : 2024-11-21 00:41

NVD link : CVE-2008-0066

Mitre link : CVE-2008-0066

CVE.ORG link : CVE-2008-0066

JSON object : View

Products Affected

ibm

lotus_notes

autonomy

keyview

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2008-0066", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-04-10T18:05:00.000", "references": [{"url": "http://secunia.com/advisories/28140", "tags": ["Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/advisories/28209", "tags": ["Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/advisories/28210", "tags": ["Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/secunia_research/2008-3/advisory/", "tags": ["Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.securityfocus.com/archive/1/490828/100/0/threaded", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.securityfocus.com/bid/28454", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.securitytracker.com/id?1019843", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.vupen.com/english/advisories/2008/1153", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.vupen.com/english/advisories/2008/1156", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41724", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/advisories/28140", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/28209", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/28210", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/secunia_research/2008-3/advisory/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/490828/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/28454", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1019843", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2008/1153", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2008/1156", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41724", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in htmsr.dll in the HTML speed reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes 7.0.2 and 7.0.3, allow remote attackers to execute arbitrary code via an HTML document with (1) \"large chunks of data,\" or a long URL in the (2) BACKGROUND attribute of a BODY element or (3) SRC attribute of an IMG element."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en htmsr.dll en el lector r\u00e1pido HTML de Autonomy (anteriormente Verity) KeyView, usado por IBM Lotus Notes 7.0.2 and 7.0.3, permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s un documento HTML con (1)\"large chunks of data,\" (grandes cadenas/trozos de datos) o una URL larga en (2) el atributo BACKGROUND del elemento BODY (3) o a trav\u00e9s del atributo SRC de una etiqueta IMG."}], "lastModified": "2024-11-21T00:41:05.610", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:autonomy:keyview:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A31DE25-F7B5-4AEA-B870-2B852F4FD8A3"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3449A490-865A-4262-8482-429DEF455644"}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F01C5CFC-7FB8-4D29-95AC-8EF59B0C170D"}], "operator": "OR"}]}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com"}

9.3 /10