CyberSec.Space Logo
Back to CVE Browser

CVE-2009-3032

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0020%
EPSS Percentile36.79th
PublishedMar 5, 2010
Last ModifiedApr 29, 2026

Vulnerability Description

Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow.

Affected Platforms (CPE)

πŸ“¦
Ibm

Lotus Notes

= 8.5
πŸ“¦
Symantec

Brightmail Gateway

= 8.0
πŸ“¦
Symantec

Data Loss Prevention Detection Servers

= 8.1.1
πŸ“¦
Symantec

Data Loss Prevention Detection Servers

= 8.1.1
πŸ“¦
Symantec

Data Loss Prevention Detection Servers

= 9.0.1
πŸ“¦
Symantec

Data Loss Prevention Detection Servers

= 9.0.1
πŸ“¦
Symantec

Data Loss Prevention Detection Servers

= 10.0
πŸ“¦
Symantec

Data Loss Prevention Detection Servers

= 10.0
πŸ“¦
Symantec

Data Loss Prevention Endpoint Agents

= 8.1.1
πŸ“¦
Symantec

Data Loss Prevention Endpoint Agents

= 9.0.1
πŸ“¦
Symantec

Data Loss Prevention Endpoint Agents

= 10.0
πŸ“¦
Symantec

Im Manager 2007

All versions
πŸ“¦
Symantec

Mail Security

= 5.0.0
πŸ“¦
Symantec

Mail Security

= 5.0.1.181
πŸ“¦
Symantec

Mail Security

= 5.0.1.182
πŸ“¦
Symantec

Mail Security

= 5.0.1.189
πŸ“¦
Symantec

Mail Security

= 5.0.11
πŸ“¦
Symantec

Mail Security

= 5.0.12
πŸ“¦
Symantec

Mail Security

= 5.0.13
πŸ“¦
Symantec

Mail Security

= 6.0.6
πŸ“¦
Symantec

Mail Security

= 6.0.7
πŸ“¦
Symantec

Mail Security

= 6.0.8
πŸ“¦
Symantec

Mail Security

= 7.5.3.25
πŸ“¦
Symantec

Mail Security

= 7.5.4.29
πŸ“¦
Symantec

Mail Security

= 7.5.5.32
πŸ“¦
Symantec

Mail Security

= 7.5.6
πŸ“¦
Symantec

Mail Security

= 7.5.7
πŸ“¦
Symantec

Mail Security

= 7.5.8
πŸ“¦
Symantec

Mail Security

= 8.0
πŸ“¦
Symantec

Mail Security

= 8.0.1
πŸ“¦
Symantec

Mail Security

= 8.0.2

References & Advisories

πŸ”— http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=858
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21440812
πŸ”— http://www.securityfocus.com/bid/38468
πŸ”— http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100304_00
πŸ”— http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=858
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg21440812
πŸ”— http://www.securityfocus.com/bid/38468
πŸ”— http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100304_00

Related Vulnerabilities

CVE-2004-228110.0

Multiple unknown vulnerabilities in IBM Lotus Notes 6.5.x before 6.5.4 and 6.0.x before 6.0.5 have unknown impact and attack vecto...

CVE-2004-109410.0

Buffer overflow in InnerMedia DynaZip DUNZIP32.dll file version 5.00.03 and earlier allows remote attackers to execute arbitrary c...

CVE-2004-048010.0

Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: U...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...