CVE-2010-0133: Buffer Overflow
First published: Tue Aug 17 2010(Updated: )
Multiple stack-based buffer overflows in the SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allow remote attackers to execute arbitrary code via unspecified vectors related to "certain records."
Credit: PSIRT-CNA@flexerasoftware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Autonomy KeyView | =10.9 | |
| Autonomy KeyView | =10.4 | |
| Autonomy KeyView | =10.4 | |
| Autonomy KeyView | =10.4 | |
| Autonomy KeyView | =10.9 | |
| Autonomy KeyView | =10.9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2010-0133?
CVE-2010-0133 has a high severity rating due to the potential for remote code execution.
How do I fix CVE-2010-0133?
To fix CVE-2010-0133, you should update to the latest version of the Autonomy KeyView SDK that addresses this vulnerability.
What software is affected by CVE-2010-0133?
CVE-2010-0133 affects multiple versions of Autonomy KeyView, including 10.4 and 10.9 across various applications.
What type of vulnerability is CVE-2010-0133?
CVE-2010-0133 is a stack-based buffer overflow vulnerability in the wkssr.dll component.
Can CVE-2010-0133 be exploited remotely?
Yes, CVE-2010-0133 can be exploited remotely, allowing attackers to execute arbitrary code.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/weakness
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/autonomy
- canonical/autonomy keyview
- version/autonomy keyview/10.9
- version/autonomy keyview/10.4