CVE-2011-1216

high

Description

Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13796

https://exchange.xforce.ibmcloud.com/vulnerabilities/67623

http://www.securityfocus.com/bid/47962

http://www.ibm.com/support/docview.wss?uid=swg21500034

http://secunia.com/advisories/44624

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=907

Details

Source: Mitre, NVD

Published: 2011-05-31

Updated: 2017-09-19

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H