Integer signedness error in rtfsr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote malicious users to execute arbitrary code via a crafted \ls keyword in a list override table entry in an RTF file, which triggers a buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
autonomy keyview viewer sdk 10.9 |
||
autonomy keyview filter sdk 10.9 |
||
autonomy keyview viewer sdk 10.4 |
||
autonomy keyview export sdk 10.4 |
||
autonomy keyview export sdk 10.9 |
||
autonomy keyview filter sdk 10.4 |