Autonomy Keyview is prone to two overflow conditions. The SpreadSheet Lotus 123 Reader (wkssr.dll) fails to properly sanitize user-supplied input when parsing certain records, resulting in stack-based buffer overflows. With specially crafted files, a remote or context-dependent attacker can execute arbitrary code.

Currently, there are no known workarounds or upgrades to correct this issue. However, Autonomy has released a patch to address this vulnerability.

• CVE ID: 2010-0133 (see also: NVD)
• Secunia Advisory ID: 38690 38704 38830
• Bugtraq ID: 41928
• Related OSVDB ID: 67246 67247 67248 67249 67251 67252
• Mail List Post: http://seclists.org/fulldisclosure/2010/Jul/383
• Other Advisory URL: http://secunia.com/secunia_research/2010-28/
• Vendor Specific News/Changelog Entry: http://www-01.ibm.com/support/docview.wss?uid=swg21440812
  http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100727_01
• Generic Exploit URL: http://www.coresecurity.com/content/lotus-notes-wk3-file-processing-buffer-overflow-exploit-10-5

• Carsten Eiram - Secunia Research