CVE-2007-6008

CWE-119 — Buffer Overflow3 documents3 sources

Severity

9.3CRITICAL

EPSS

3.6%

top 12.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Autonomy Keyview Export SDK Autonomy Keyview Filter SDK Autonomy Keyview Viewer SDK

Timeline

PublishedNov 15

Latest updateMay 1

Description

Heap-based buffer overflow in emlsr.dll before 2.0.0.4 in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK allows remote attackers to execute arbitrary code via a long Content-Type header line in an EML file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDautonomy/keyview_export_sdk2.0

▶NVDautonomy/keyview_filter_sdk2.0

▶NVDautonomy/keyview_viewer_sdk2.0

Patches

Patch: secunia.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-hf4q-p7pr-fvwm: Heap-based buffer overflow in emlsr↗2022-05-01

▶

CVEList

CVE-2007-6008: Heap-based buffer overflow in emlsr↗2007-11-15

▶