CVE-2007-5910

Stack-based buffer overflow in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, wp6sr.dll in IBM Lotus Notes 8.0 and before 7.0.3, Symantec Mail Security, and other products, allows remote attackers to execute arbitrary code via a crafted WordPerfect (WPD) file.

Published: Nov 10, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5910
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
symantec / mail_security	5.0.1	5.0.1.x
ibm / lotus_notes	-	7.0.2.x
autonomy / keyview_viewer_sdk	-	9.2.0.x
symantec / mail_security	5.0.0.24	5.0.0.24.x
symantec / mail_security	7.5	7.5.x
activepdf / docconverter	3.8.2_.5	3.8.2_.5.x
symantec / mail_security	5.0	5.0.x
autonomy / keyview_filter_sdk	-	9.2.0.x
autonomy / keyview_export_sdk	-	9.2.0.x
symantec / mail_security	5.0.0	5.0.0.x

http://secunia.com/advisories/27304
http://securityreason.com/securityalert/3357
http://securityresponse.symantec.com/avcenter/security/Content/2007.11.01c.html
http://securitytracker.com/id?1018853
http://securitytracker.com/id?1018886
http://vuln.sg/lotusnotes702-en.html
http://vuln.sg/lotusnotes702wpd-en.html
http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111
http://www.securityfocus.com/archive/1/482664
http://www.securityfocus.com/bid/26175
http://www.vupen.com/english/advisories/2007/3596
http://www.vupen.com/english/advisories/2007/3697

Vulnerability Database

289,784

CVE-2007-5910