Vulnerability Description
Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Lotus Notes | <= 8.5.2.2 |
Related Weaknesses (CWE)
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=907
- http://secunia.com/advisories/44624Vendor Advisory
- http://www.ibm.com/support/docview.wss?uid=swg21500034
- http://www.securityfocus.com/bid/47962
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67623
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=907
- http://secunia.com/advisories/44624Vendor Advisory
- http://www.ibm.com/support/docview.wss?uid=swg21500034
- http://www.securityfocus.com/bid/47962
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67623
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2011-1216?
CVE-2011-1216 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadshee...
How severe is CVE-2011-1216?
CVE-2011-1216 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1216?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Lotus Notes.