CVE Vulnerabilities

CVE-2007-5406

Published: Apr 10, 2008 | Modified: Oct 15, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, does not properly parse long tokens, which allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted .ag file.

Affected Software

Name Vendor Start Version End Version
Lotus_notes Ibm 6.0 6.0
Lotus_notes Ibm 6.5 6.5
Lotus_notes Ibm 7.0 7.0
Lotus_notes Ibm 8.0 8.0
Lotus_notes Ibm 8.0.1 8.0.1
Mail_security Symantec * 7.5
Mail_security Symantec 5.0 5.0
Mail_security Symantec 5.0 5.0
Mail_security Symantec 5.0.0 5.0.0
Mail_security Symantec 5.0.1 5.0.1

References