Check Point Advisories

Update Protection against Symantec Mail Security KeyView Excel File SST Parsing Integer Overflow Vulnerability

Check Point Reference: CPAI-2009-233
Date Published: 24 Sep 2009
Severity: Critical
Last Updated: Thursday 01 January, 2009
Source: Secunia Advisory: 36472
Industry Reference:CVE-2009-3037
Protection Provided by:
Who is Vulnerable? Symantec Brightmail Appliance 8.0.x prior to 8.0.2
Symantec Data Loss Prevention Endpoint Agents 8.1.x prior to 8.1.10.2
Symantec Data Loss Prevention Endpoint Agents 9.0.x prior to 9.0.18.9
Symantec Data Loss Prevention Enforce/Detection Servers 7.2.x prior to 7.2.0.40
Symantec Data Loss Prevention Enforce/Detection Servers 8.1.x prior to 8.1.10.1
Symantec Data Loss Prevention Enforce/Detection Servers 9.0.x prior to 9.0.18.5
Symantec Mail Security for Domino 7.5.x prior to 7.5.7
Symantec Mail Security for Domino 8.0.x prior to 8.0.1
Symantec Mail Security for Microsoft Exchange 5.0.x prior to 5.0.13
Symantec Mail Security for Microsoft Exchange 6.0.x prior to 6.0.9
Symantec Mail Security for SMTP 5.0.x prior to patch level 205

IBM Lotus Notes 5.x
IBM Lotus Notes 6.x
IBM Lotus Notes 7.x
IBM Lotus Notes 8.0.x
IBM Lotus Notes 8.5.x
Vulnerability Description An integer overflow vulnerability exists in multiple products using Autonomy KeyView SDK (File Viewer for Excel). A remote attacker could exploit this vulnerability by enticing the target user to open or view a malicious Excel file with the vulnerable version of the product. Successful exploitation could result in execution of arbitrary code.
Update/Patch AvaliableNo patch has been available from Symantec at the time of writing.
IBM has released an advisory: IBM
Vulnerability DetailsThe vulnerability is due to an error when parsing a Shared String Table (SST) record inside of an Excel file. Remote attackers can exploit this vulnerability by enticing a target user to open or view a malicious Excel file with the vulnerable version of the product.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK