cvelistv5 - cve-2011-0548

CVE-2011-0548 (GCVE-0-2011-0548)

Vulnerability from cvelistv5 – Published: 2011-07-18 22:00 – Updated: 2024-08-06 21:58

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://secunia.com/advisories/44779	third-party-advisoryx_refsource_SECUNIA
	http://securitytracker.com/id?1025595	vdb-entryx_refsource_SECTRACK
	http://securitytracker.com/id?1025594	vdb-entryx_refsource_SECTRACK
	http://securitytracker.com/id?1025596	vdb-entryx_refsource_SECTRACK
	http://www.symantec.com/security_response/securit…	x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:58:25.968Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "44779",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/44779"
          },
          {
            "name": "1025595",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1025595"
          },
          {
            "name": "1025594",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1025594"
          },
          {
            "name": "1025596",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1025596"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-05-31T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2013-02-07T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "44779",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/44779"
        },
        {
          "name": "1025595",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1025595"
        },
        {
          "name": "1025594",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1025594"
        },
        {
          "name": "1025596",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1025596"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-0548",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "44779",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/44779"
            },
            {
              "name": "1025595",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1025595"
            },
            {
              "name": "1025594",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1025594"
            },
            {
              "name": "1025596",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1025596"
            },
            {
              "name": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00",
              "refsource": "CONFIRM",
              "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2011-0548",
    "datePublished": "2011-07-18T22:00:00",
    "dateReserved": "2011-01-20T00:00:00",
    "dateUpdated": "2024-08-06T21:58:25.968Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:mail_security:6.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE8C3973-B0BC-4649-BAE3-2A8E7A43711D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:mail_security:7.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23814C81-4058-4772-99FE-ACF667F3F007\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:mail_security:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1D4CCA5D-0586-4453-BEA1-04E8D33853F4\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"9.5\", \"matchCriteriaId\": \"C7D06A2B-40DA-4F28-85AD-BFF9D21F4AB6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FC3C1B7-73FC-407A-9EFB-7B25F67F6B74\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D70FC5D5-0230-4E06-852B-6F44D3C30956\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7CD7C7F5-B444-4205-95E8-66EEF09C5B57\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:7.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"00FCAADA-AF2C-4B77-85FD-164977D72854\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7B69880-197A-4CDF-8137-FA7265F47899\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D2391478-B933-4D12-83AF-7627B2AA9BF4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DC9D871-3946-4A9A-9A64-9AB5B3E9632D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"109EAF12-19C9-4332-B7E6-D39A85508220\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"10.5.2\", \"matchCriteriaId\": \"2CB5ECA0-85AC-4DAC-9CBA-35E729D1BB1B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BDD5F65-FC86-4BAF-8C09-85A2A171CB29\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D816241-534F-4CC9-9D3B-EF7E44655DAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A128389-3A28-45A9-A6A3-C0AB0726EBC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CFCC69D1-4565-4EBC-AC34-685C24AB3282\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:8.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"062A4D59-651B-41A7-B787-33F6970790C1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:8.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0DBE01A-3C12-494C-B7E9-0BCD406C74A7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"40CF3C33-4C43-4428-908A-7C16C3004EBF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F542CC1-193B-4503-B106-E0423BF88B07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:10.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CDD1850A-6FE6-4E0B-A15C-9FBDD7E8A80E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:10.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"11044D7D-313E-4E16-A096-E1B79C02919B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:data_loss_prevention:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"46F9853C-025D-4C4E-B895-6DBCE65DFE11\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en Lotus Freelance Graphics PRZ file viewer en Auntonomy KeyView, tal como se utiliza en Symantec Mail Security (SMS) v6.x hasta v8.x, Symantec Brightmail y Messaging Gateway antes de v9.5.1, y Symantec Data Loss Prevention (DLP) antes de v10.5.3 y v11.x antes de v11,1,  permite a atacantes remotos provocar una denegaci\\u00f3n de servicio (ca\\u00edda) o ejecutar c\\u00f3digo de su elecci\\u00f3n mediante un fichero .prz manipulado. Nota: Esta vulnerabilidad puede solaparse con CVE-2011-1217\"}]",
      "id": "CVE-2011-0548",
      "lastModified": "2024-11-21T01:24:16.130",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2011-07-18T22:55:00.860",
      "references": "[{\"url\": \"http://secunia.com/advisories/44779\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1025594\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1025595\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1025596\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/44779\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://securitytracker.com/id?1025594\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1025595\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1025596\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-0548\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2011-07-18T22:55:00.860\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer en Lotus Freelance Graphics PRZ file viewer en Auntonomy KeyView, tal como se utiliza en Symantec Mail Security (SMS) v6.x hasta v8.x, Symantec Brightmail y Messaging Gateway antes de v9.5.1, y Symantec Data Loss Prevention (DLP) antes de v10.5.3 y v11.x antes de v11,1,  permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) o ejecutar c\u00f3digo de su elecci\u00f3n mediante un fichero .prz manipulado. Nota: Esta vulnerabilidad puede solaparse con CVE-2011-1217\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:mail_security:6.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE8C3973-B0BC-4649-BAE3-2A8E7A43711D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:mail_security:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23814C81-4058-4772-99FE-ACF667F3F007\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:mail_security:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D4CCA5D-0586-4453-BEA1-04E8D33853F4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"9.5\",\"matchCriteriaId\":\"C7D06A2B-40DA-4F28-85AD-BFF9D21F4AB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FC3C1B7-73FC-407A-9EFB-7B25F67F6B74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D70FC5D5-0230-4E06-852B-6F44D3C30956\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CD7C7F5-B444-4205-95E8-66EEF09C5B57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00FCAADA-AF2C-4B77-85FD-164977D72854\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7B69880-197A-4CDF-8137-FA7265F47899\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2391478-B933-4D12-83AF-7627B2AA9BF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DC9D871-3946-4A9A-9A64-9AB5B3E9632D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"109EAF12-19C9-4332-B7E6-D39A85508220\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"10.5.2\",\"matchCriteriaId\":\"2CB5ECA0-85AC-4DAC-9CBA-35E729D1BB1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BDD5F65-FC86-4BAF-8C09-85A2A171CB29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D816241-534F-4CC9-9D3B-EF7E44655DAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A128389-3A28-45A9-A6A3-C0AB0726EBC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CFCC69D1-4565-4EBC-AC34-685C24AB3282\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"062A4D59-651B-41A7-B787-33F6970790C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:8.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0DBE01A-3C12-494C-B7E9-0BCD406C74A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40CF3C33-4C43-4428-908A-7C16C3004EBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F542CC1-193B-4503-B106-E0423BF88B07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:10.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDD1850A-6FE6-4E0B-A15C-9FBDD7E8A80E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:10.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11044D7D-313E-4E16-A096-E1B79C02919B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:data_loss_prevention:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46F9853C-025D-4C4E-B895-6DBCE65DFE11\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/44779\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1025594\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1025595\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1025596\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/44779\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://securitytracker.com/id?1025594\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1025595\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1025596\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-HRW2-PV4C-V3HP

Vulnerability from github – Published: 2022-05-17 05:15 – Updated: 2022-05-17 05:15

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-0548"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-07-18T22:55:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217.",
  "id": "GHSA-hrw2-pv4c-v3hp",
  "modified": "2022-05-17T05:15:49Z",
  "published": "2022-05-17T05:15:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0548"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/44779"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1025594"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1025595"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1025596"
    },
    {
      "type": "WEB",
      "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2011-0548

Vulnerability from fkie_nvd - Published: 2011-07-18 22:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/44779	Vendor Advisory
cve@mitre.org	http://securitytracker.com/id?1025594
cve@mitre.org	http://securitytracker.com/id?1025595
cve@mitre.org	http://securitytracker.com/id?1025596
cve@mitre.org	http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110531_00
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/44779	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1025594
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1025595
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1025596
af854a3a-2127-422b-91ae-364da2661108	http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110531_00

Impacted products

Vendor	Product	Version
symantec	mail_security	6.0.0
symantec	mail_security	7.5
symantec	mail_security	8.0
symantec	brightmail_and_messaging_gateway	*
symantec	brightmail_and_messaging_gateway	4.0.0
symantec	brightmail_and_messaging_gateway	4.1.0
symantec	brightmail_and_messaging_gateway	5.0
symantec	brightmail_and_messaging_gateway	7.7
symantec	brightmail_and_messaging_gateway	8.0
symantec	brightmail_and_messaging_gateway	9.0
symantec	brightmail_and_messaging_gateway	9.0.1
symantec	brightmail_and_messaging_gateway	9.0.2
symantec	data_loss_prevention	*
symantec	data_loss_prevention	7.0
symantec	data_loss_prevention	7.1
symantec	data_loss_prevention	7.2
symantec	data_loss_prevention	8.0
symantec	data_loss_prevention	8.1
symantec	data_loss_prevention	8.1.1
symantec	data_loss_prevention	9.0
symantec	data_loss_prevention	10
symantec	data_loss_prevention	10.5
symantec	data_loss_prevention	10.5.1
symantec	data_loss_prevention	11.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:symantec:mail_security:6.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE8C3973-B0BC-4649-BAE3-2A8E7A43711D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:mail_security:7.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "23814C81-4058-4772-99FE-ACF667F3F007",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:mail_security:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D4CCA5D-0586-4453-BEA1-04E8D33853F4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7D06A2B-40DA-4F28-85AD-BFF9D21F4AB6",
              "versionEndIncluding": "9.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9FC3C1B7-73FC-407A-9EFB-7B25F67F6B74",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D70FC5D5-0230-4E06-852B-6F44D3C30956",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CD7C7F5-B444-4205-95E8-66EEF09C5B57",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:7.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "00FCAADA-AF2C-4B77-85FD-164977D72854",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7B69880-197A-4CDF-8137-FA7265F47899",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D2391478-B933-4D12-83AF-7627B2AA9BF4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DC9D871-3946-4A9A-9A64-9AB5B3E9632D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "109EAF12-19C9-4332-B7E6-D39A85508220",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CB5ECA0-85AC-4DAC-9CBA-35E729D1BB1B",
              "versionEndIncluding": "10.5.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7BDD5F65-FC86-4BAF-8C09-85A2A171CB29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D816241-534F-4CC9-9D3B-EF7E44655DAB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A128389-3A28-45A9-A6A3-C0AB0726EBC9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CFCC69D1-4565-4EBC-AC34-685C24AB3282",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "062A4D59-651B-41A7-B787-33F6970790C1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:8.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0DBE01A-3C12-494C-B7E9-0BCD406C74A7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:9.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "40CF3C33-4C43-4428-908A-7C16C3004EBF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:10:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F542CC1-193B-4503-B106-E0423BF88B07",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:10.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDD1850A-6FE6-4E0B-A15C-9FBDD7E8A80E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:10.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "11044D7D-313E-4E16-A096-E1B79C02919B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:symantec:data_loss_prevention:11.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "46F9853C-025D-4C4E-B895-6DBCE65DFE11",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en Lotus Freelance Graphics PRZ file viewer en Auntonomy KeyView, tal como se utiliza en Symantec Mail Security (SMS) v6.x hasta v8.x, Symantec Brightmail y Messaging Gateway antes de v9.5.1, y Symantec Data Loss Prevention (DLP) antes de v10.5.3 y v11.x antes de v11,1,  permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) o ejecutar c\u00f3digo de su elecci\u00f3n mediante un fichero .prz manipulado. Nota: Esta vulnerabilidad puede solaparse con CVE-2011-1217"
    }
  ],
  "id": "CVE-2011-0548",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2011-07-18T22:55:00.860",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/44779"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1025594"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1025595"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1025596"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/44779"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1025594"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1025595"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1025596"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2011-AVI-326

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité dans divers produits Symantec permet, suivant le logiciel affecté, une élévation de privilèges, un déni de service ou une exécution de code arbitraire à distance.

Description

Une vulnérabilité, de type débordement de mémoire, a été découverte dans Autonomy Verity KeyView Filter, fourni avec plusieurs logiciels Symantec. L'exploitation de cette vulnérabilité permet, en fonction du logiciel affecté, une élévation de privilèges, un déni de service ou une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Symantec	N/A	Symantec Data Loss Prevention Enforce/Detection Servers versions 10.x et antérieures ;
Symantec	N/A	Symantec Data Loss Prevention Endpoint Agents versions 10.x et antérieures ;
Symantec	N/A	Symantec Mail Security for Microsoft Exchange versions 6.x ;
Symantec	N/A	Symantec Data Loss Prevention Endpoint Agents versions 11.x.
Symantec	N/A	Symantec Data Loss Prevention Enforce/Detection Servers versions 11.x ;
Symantec	N/A	Symantec Mail Security for Domino versions 7.5.x et 8.x ;
Symantec	N/A	Symantec Brightmail and Messaging Gateway versions 9.5 et antérieures ;

References

Title

Publication Time

Tags

Bulletin de sécurité Symantec SYM11-007 du 31 mai 2011

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Symantec Data Loss Prevention Enforce/Detection Servers versions 10.x et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Data Loss Prevention Endpoint Agents versions 10.x et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Mail Security for Microsoft Exchange versions 6.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Data Loss Prevention Endpoint Agents versions 11.x.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Data Loss Prevention Enforce/Detection Servers versions 11.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Mail Security for Domino versions 7.5.x et 8.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Brightmail and Messaging Gateway versions 9.5 et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9, de type d\u00e9bordement de m\u00e9moire, a \u00e9t\u00e9 d\u00e9couverte dans\nAutonomy Verity KeyView Filter, fourni avec plusieurs logiciels\nSymantec. L\u0027exploitation de cette vuln\u00e9rabilit\u00e9 permet, en fonction du\nlogiciel affect\u00e9, une \u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service ou une\nex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-0548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0548"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-326",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-06-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans divers produits \u003cspan\nclass=\"textit\"\u003eSymantec\u003c/span\u003e permet, suivant le logiciel affect\u00e9, une\n\u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service ou une ex\u00e9cution de code\narbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans plusieurs produits Symantec",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Symantec SYM11-007 du 31 mai 2011",
      "url": "http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
    }
  ]
}

CERTA-2011-AVI-326

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité dans divers produits Symantec permet, suivant le logiciel affecté, une élévation de privilèges, un déni de service ou une exécution de code arbitraire à distance.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Symantec	N/A	Symantec Data Loss Prevention Enforce/Detection Servers versions 10.x et antérieures ;
Symantec	N/A	Symantec Data Loss Prevention Endpoint Agents versions 10.x et antérieures ;
Symantec	N/A	Symantec Mail Security for Microsoft Exchange versions 6.x ;
Symantec	N/A	Symantec Data Loss Prevention Endpoint Agents versions 11.x.
Symantec	N/A	Symantec Data Loss Prevention Enforce/Detection Servers versions 11.x ;
Symantec	N/A	Symantec Mail Security for Domino versions 7.5.x et 8.x ;
Symantec	N/A	Symantec Brightmail and Messaging Gateway versions 9.5 et antérieures ;

References

Title

Publication Time

Tags

Bulletin de sécurité Symantec SYM11-007 du 31 mai 2011

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Symantec Data Loss Prevention Enforce/Detection Servers versions 10.x et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Data Loss Prevention Endpoint Agents versions 10.x et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Mail Security for Microsoft Exchange versions 6.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Data Loss Prevention Endpoint Agents versions 11.x.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Data Loss Prevention Enforce/Detection Servers versions 11.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Mail Security for Domino versions 7.5.x et 8.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    },
    {
      "description": "Symantec Brightmail and Messaging Gateway versions 9.5 et ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Symantec",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9, de type d\u00e9bordement de m\u00e9moire, a \u00e9t\u00e9 d\u00e9couverte dans\nAutonomy Verity KeyView Filter, fourni avec plusieurs logiciels\nSymantec. L\u0027exploitation de cette vuln\u00e9rabilit\u00e9 permet, en fonction du\nlogiciel affect\u00e9, une \u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service ou une\nex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-0548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0548"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-326",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-06-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans divers produits \u003cspan\nclass=\"textit\"\u003eSymantec\u003c/span\u003e permet, suivant le logiciel affect\u00e9, une\n\u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service ou une ex\u00e9cution de code\narbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans plusieurs produits Symantec",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Symantec SYM11-007 du 31 mai 2011",
      "url": "http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
    }
  ]
}

VAR-201107-0115

Vulnerability from variot - Updated: 2023-12-18 11:33

Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file. NOTE: this may overlap CVE-2011-1217. Autonomy KeyView IDOL Contains multiple vulnerabilities in file decoding. Autonomy Provided by Autonomy KeyView IDOL Is 1000 A library that decodes the above file formats. IBM Lotus Notes , Lotus Domino , Symantec Mail Security , Hyland OnBase Used in such applications. Autonomy KeyView IDOL Contains multiple vulnerabilities in file decoding.Although the impact will vary depending on the application, service operation may be interrupted by opening a specially crafted file. (DoS) An attacker may be attacked or execute arbitrary code with user privileges. Autonomy KeyView Filter is prone to a buffer-overflow vulnerability because of a failure to properly bounds check user-supplied input. An attacker can exploit this issue by enticing an unsuspecting victim to open a malicious file or email attachment. Failed exploit attempts will result in a denial-of-service condition. NOTE: This issue was previously discussed in BID 47962 (IBM Lotus Notes Attachment Handling Multiple Buffer Overflow Vulnerabilities) but has been given its own record to better document it. KeyView is a software package for exporting, converting and viewing files in various formats.

For more information: SA44820

SOLUTION: Do not open documents from untrusted sources.

For more information: SA44820

Successful exploitation requires the attachment content scanning option to be enabled.

SOLUTION: Disable the attachment content scanning option. ----------------------------------------------------------------------

Alerts when vulnerabilities pose a threat to your infrastructure The enhanced reporting module of the Secunia Vulnerability Intelligence Manager (VIM) enables you to combine advisory and ticket information, and generate policy compliance statistics. Using your asset list preferences, customised notifications are issued as soon as a new vulnerability is discovered - a valuable tool for documenting mitigation strategies.

For more information see vulnerability #6 in: SA44624

Please see the vendor's advisory for the list for affected products. ----------------------------------------------------------------------

Join Secunia @ FIRST Conference, 12-17 June, Hilton Vienna, Austria See to the presentation "The Dynamics and Threats of End-Point Software Portfolios" by Secunia's Research Analyst Director, Stefan Frei. Read more: http://conference.first.org/

TITLE: Autonomy KeyView File Processing Vulnerabilities

SECUNIA ADVISORY ID: SA44820

VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/44820/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=44820

RELEASE DATE: 2011-06-08

DISCUSS ADVISORY: http://secunia.com/advisories/44820/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)

http://secunia.com/advisories/44820/

ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=44820

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION: Multiple vulnerabilities have been reported in Autonomy KeyView, which can be exploited by malicious people to compromise a vulnerable system.

1) An error when processing Windows Write (WRI) files can be exploited to cause a stack-based buffer overflow.

2) Some errors when processing unspecified file formats can be exploited to corrupt memory. No further information is currently available.

The vulnerabilities are reported in versions prior to 10.13.1.

SOLUTION: Update to version 10.13.1.

PROVIDED AND/OR DISCOVERED BY: Will Dormann and Jared Allar, CERT/CC.

ORIGINAL ADVISORY: US-CERT (VU#126159): http://www.kb.cert.org/vuls/id/126159

OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/

About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201107-0115",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "8.1.1"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "10.5.1"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "10.5"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "5.0"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "8.1"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "8.0"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "7.7"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "4.0.0"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "4.1.0"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "symantec",
        "version": "10"
      },
      {
        "model": "mail security",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "7.5"
      },
      {
        "model": "mail security",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "8.0"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "7.0"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "9.0"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "11.0"
      },
      {
        "model": "mail security",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "6.0.0"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "9.5"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "9.0"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "8.0"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "7.2"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "9.0.1"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "9.0.2"
      },
      {
        "model": "data loss prevention",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "7.1"
      },
      {
        "model": "data loss prevention",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "symantec",
        "version": "10.5.2"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "autonomy",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "ca",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "emc",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "hyland",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "lotus",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "mcafee",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "palisade",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "proofpoint",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "symantec",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "trend micro",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "verdasys",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "websense",
        "version": null
      },
      {
        "model": "keyview idol",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "autonomy",
        "version": "10.13.1 earlier"
      },
      {
        "model": "brightmail gateway and symantec messaging gateway",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "9.5"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "10.x"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "11.x"
      },
      {
        "model": "data loss prevention enforce/detection servers",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(linux) 10.x"
      },
      {
        "model": "data loss prevention enforce/detection servers",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(linux) 11.x"
      },
      {
        "model": "data loss prevention enforce/detection servers",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(windows) 10.x"
      },
      {
        "model": "data loss prevention enforce/detection servers",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(windows) 11.x"
      },
      {
        "model": "mail security",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(domino) 7.5.x"
      },
      {
        "model": "mail security",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(domino) 8.x"
      },
      {
        "model": "mail security",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "symantec",
        "version": "(exchange) 6.x"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.5.1"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.5"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.11"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.10"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.9"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.8"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.7"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.6"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.5"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.0.1"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.6"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.3"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.2"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.1"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.10"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.9"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.8"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.7"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.6"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.325"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.5.32"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.4.29"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.3.25"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.0.19"
      },
      {
        "model": "mail security for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5.1"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.0.1010.18007"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.187"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.2"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.1"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.101"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.10.9"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.1"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.3"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.6.2"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.10.38"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "11.0"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.0"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5.1"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.0.1010.18007"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.185"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.3"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.2"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.1"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.101"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.10.8"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.1"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.228"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.5.15"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "11.0"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.0"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5.1"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.0.1010.18007"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.185"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.3"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.2"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.1"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.101"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.10.8"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.1"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.238"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1.5.15"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.1"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "11.0"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.0"
      },
      {
        "model": "brightmail gateway series appliance",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "83000"
      },
      {
        "model": "brightmail gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0.2"
      },
      {
        "model": "brightmail gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.2"
      },
      {
        "model": "brightmail gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.1"
      },
      {
        "model": "brightmail gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.0"
      },
      {
        "model": "brightmail gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0"
      },
      {
        "model": "brightmail and messaging gateway",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.5"
      },
      {
        "model": "host data loss prevention",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "mcafee",
        "version": "9.2"
      },
      {
        "model": "host data loss prevention",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "mcafee",
        "version": "9.1"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "8.5.2"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "8.5.1"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "7.0.3"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "7.0.2"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "7.0.1"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.6"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.5"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.4"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.3"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.2"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.1"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "8.5"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "8.0"
      },
      {
        "model": "lotus notes fp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "7.0.2"
      },
      {
        "model": "lotus notes fp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "7.0.2"
      },
      {
        "model": "lotus notes",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "7.0"
      },
      {
        "model": "lotus notes fp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.6"
      },
      {
        "model": "lotus notes fp3",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.5"
      },
      {
        "model": "lotus notes fp2",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.5"
      },
      {
        "model": "lotus notes fp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "ibm",
        "version": "6.5.2"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.4"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.3"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "9.2"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.9"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.8"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.5"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.12"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.11"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.10"
      },
      {
        "model": "keyview viewer sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10"
      },
      {
        "model": "keyview idol",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.9"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.4"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.3"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "9.2"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.8"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.5"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.12"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.11"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.10"
      },
      {
        "model": "keyview filter sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.4"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.3"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "9.2"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.9"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.8"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.5"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.12"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.10"
      },
      {
        "model": "keyview export sdk",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10"
      },
      {
        "model": "messaging gateway",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "9.5.1"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.5.5"
      },
      {
        "model": "mail security for microsoft exchange",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "6.0.12"
      },
      {
        "model": "mail security for domino",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "8.0.8"
      },
      {
        "model": "mail security for domino",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "7.5.11"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "11.1"
      },
      {
        "model": "data loss prevention endpoint agents",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5.3"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "11.1"
      },
      {
        "model": "data loss prevention detection servers for windows",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5.3"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "11.1"
      },
      {
        "model": "data loss prevention detection servers for linux",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "symantec",
        "version": "10.5.3"
      },
      {
        "model": "keyview idol",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "autonomy",
        "version": "10.13.1"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "db": "BID",
        "id": "48013"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:mail_security:6.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:mail_security:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:mail_security:7.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:7.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:5.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "9.5",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:8.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:11.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "10.5.2",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:8.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:10.5.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:10.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:7.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:7.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Secunia",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "102365"
      },
      {
        "db": "PACKETSTORM",
        "id": "102187"
      },
      {
        "db": "PACKETSTORM",
        "id": "101914"
      },
      {
        "db": "PACKETSTORM",
        "id": "102081"
      },
      {
        "db": "PACKETSTORM",
        "id": "115865"
      }
    ],
    "trust": 0.5
  },
  "cve": "CVE-2011-0548",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": true,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CARNEGIE MELLON",
            "availabilityImpact": "PARTIAL",
            "availabilityRequirement": "NOT DEFINED",
            "baseScore": 9.0,
            "collateralDamagePotential": "NOT DEFINED",
            "confidentialityImpact": "COMPLETE",
            "confidentialityRequirement": "NOT DEFINED",
            "enviromentalScore": 7.4,
            "exploitability": "FUNCTIONAL",
            "exploitabilityScore": 8.6,
            "id": "VU#126159",
            "impactScore": 9.5,
            "integrityImpact": "COMPLETE",
            "integrityRequirement": "NOT DEFINED",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "remediationLevel": "OFFICIAL FIX",
            "reportConfidence": "CONFIRMED",
            "severity": "HIGH",
            "targetDistribution": "NOT DEFINED",
            "trust": 0.8,
            "userInterationRequired": null,
            "vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:P",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Medium",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 9.3,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2011-0548",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 8.6,
            "id": "VHN-48493",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2011-0548",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#126159",
            "trust": 0.8,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201106-004",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-48493",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217. Autonomy KeyView IDOL Contains multiple vulnerabilities in file decoding. Autonomy Provided by Autonomy KeyView IDOL Is 1000 A library that decodes the above file formats. IBM Lotus Notes , Lotus Domino , Symantec Mail Security , Hyland OnBase Used in such applications. Autonomy KeyView IDOL Contains multiple vulnerabilities in file decoding.Although the impact will vary depending on the application, service operation may be interrupted by opening a specially crafted file. (DoS) An attacker may be attacked or execute arbitrary code with user privileges. Autonomy KeyView Filter is prone to a buffer-overflow vulnerability because of a failure to properly bounds check user-supplied input. \nAn attacker can exploit this issue by enticing an unsuspecting victim to open a malicious file or email attachment. Failed exploit attempts will result in a denial-of-service condition. \nNOTE: This issue was previously discussed in BID 47962 (IBM Lotus Notes Attachment Handling Multiple Buffer Overflow Vulnerabilities) but has been given its own record to better document it. KeyView is a software package for exporting, converting and viewing files in various formats. \n\nFor more information:\nSA44820\n\nSOLUTION:\nDo not open documents from untrusted sources. \n\nFor more information:\nSA44820\n\nSuccessful exploitation requires the attachment content scanning\noption to be enabled. \n\nSOLUTION:\nDisable the attachment content scanning option. ----------------------------------------------------------------------\n\n\nAlerts when vulnerabilities pose a threat to your infrastructure\nThe enhanced reporting module of the Secunia Vulnerability Intelligence Manager (VIM) enables you to combine advisory and ticket information, and generate policy compliance statistics. Using your asset list preferences, customised notifications are issued as soon as a new vulnerability is discovered - a valuable tool for documenting mitigation strategies. \n\nFor more information see vulnerability #6 in:\nSA44624\n\nPlease see the vendor\u0027s advisory for the list for affected products. ----------------------------------------------------------------------\n\n\nJoin Secunia @ FIRST Conference, 12-17 June, Hilton Vienna, Austria\nSee to the presentation \"The Dynamics and Threats of End-Point Software Portfolios\" by Secunia\u0027s Research Analyst Director, Stefan Frei. \nRead more:\nhttp://conference.first.org/ \n\n\n----------------------------------------------------------------------\n\nTITLE:\nAutonomy KeyView File Processing Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA44820\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/44820/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44820\n\nRELEASE DATE:\n2011-06-08\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/44820/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/44820/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44820\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nMultiple vulnerabilities have been reported in Autonomy KeyView,\nwhich can be exploited by malicious people to compromise a vulnerable\nsystem. \n\n1) An error when processing Windows Write (WRI) files can be\nexploited to cause a stack-based buffer overflow. \n\n2) Some errors when processing unspecified file formats can be\nexploited to corrupt memory. No further information is currently\navailable. \n\nThe vulnerabilities are reported in versions prior to 10.13.1. \n\nSOLUTION:\nUpdate to version 10.13.1. \n\nPROVIDED AND/OR DISCOVERED BY:\nWill Dormann and Jared Allar, CERT/CC. \n\nORIGINAL ADVISORY:\nUS-CERT (VU#126159):\nhttp://www.kb.cert.org/vuls/id/126159\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/vulnerability_intelligence/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "BID",
        "id": "48013"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "db": "PACKETSTORM",
        "id": "102365"
      },
      {
        "db": "PACKETSTORM",
        "id": "102187"
      },
      {
        "db": "PACKETSTORM",
        "id": "101914"
      },
      {
        "db": "PACKETSTORM",
        "id": "102081"
      },
      {
        "db": "PACKETSTORM",
        "id": "115865"
      }
    ],
    "trust": 3.87
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2011-0548",
        "trust": 2.8
      },
      {
        "db": "SECUNIA",
        "id": "44779",
        "trust": 2.6
      },
      {
        "db": "SECTRACK",
        "id": "1025596",
        "trust": 2.5
      },
      {
        "db": "SECTRACK",
        "id": "1025594",
        "trust": 2.5
      },
      {
        "db": "SECTRACK",
        "id": "1025595",
        "trust": 2.5
      },
      {
        "db": "CERT/CC",
        "id": "VU#126159",
        "trust": 2.3
      },
      {
        "db": "BID",
        "id": "48013",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004",
        "trust": 0.7
      },
      {
        "db": "MCAFEE",
        "id": "SB10024",
        "trust": 0.4
      },
      {
        "db": "SECUNIA",
        "id": "50399",
        "trust": 0.3
      },
      {
        "db": "SECUNIA",
        "id": "44877",
        "trust": 0.2
      },
      {
        "db": "SECUNIA",
        "id": "44878",
        "trust": 0.2
      },
      {
        "db": "SECUNIA",
        "id": "44820",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-48493",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "102365",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "102187",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "101914",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "102081",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "115865",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "db": "BID",
        "id": "48013"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "PACKETSTORM",
        "id": "102365"
      },
      {
        "db": "PACKETSTORM",
        "id": "102187"
      },
      {
        "db": "PACKETSTORM",
        "id": "101914"
      },
      {
        "db": "PACKETSTORM",
        "id": "102081"
      },
      {
        "db": "PACKETSTORM",
        "id": "115865"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "id": "VAR-201107-0115",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      }
    ],
    "trust": 0.6
  },
  "last_update_date": "2023-12-18T11:33:33.995000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "KeyView IDOL \u0026 Connectors",
        "trust": 0.8,
        "url": "http://www.autonomy.com/content/products/idol-modules-connectors/index.en.html"
      },
      {
        "title": "Information Connectivity",
        "trust": 0.8,
        "url": "http://www.autonomy.com/content/technology/idol-functionality-information-connectivity/index.en.html"
      },
      {
        "title": "Autonomy Support Site",
        "trust": 0.8,
        "url": "https://customers.autonomy.com/"
      },
      {
        "title": "SYM11-007",
        "trust": 0.8,
        "url": "http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
      },
      {
        "title": "SYM11-007",
        "trust": 0.8,
        "url": "http://www.symantec.com/ja/jp/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-119",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.5,
        "url": "http://securitytracker.com/id?1025594"
      },
      {
        "trust": 2.5,
        "url": "http://securitytracker.com/id?1025595"
      },
      {
        "trust": 2.5,
        "url": "http://securitytracker.com/id?1025596"
      },
      {
        "trust": 2.5,
        "url": "http://secunia.com/advisories/44779"
      },
      {
        "trust": 1.5,
        "url": "http://www.kb.cert.org/vuls/id/126159"
      },
      {
        "trust": 1.0,
        "url": "http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
      },
      {
        "trust": 1.0,
        "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
      },
      {
        "trust": 0.8,
        "url": "http://www.autonomy.com/content/products/idol-modules-connectors/index.en.html"
      },
      {
        "trust": 0.8,
        "url": "http://www.autonomy.com/content/technology/idol-functionality-information-connectivity/index.en.html"
      },
      {
        "trust": 0.8,
        "url": "https://customers.autonomy.com"
      },
      {
        "trust": 0.8,
        "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026suid=20111006_00"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnvu126159"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-0548"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-0548"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/48013"
      },
      {
        "trust": 0.5,
        "url": "http://secunia.com/advisories/secunia_security_advisories/"
      },
      {
        "trust": 0.5,
        "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
      },
      {
        "trust": 0.5,
        "url": "http://secunia.com/vulnerability_scanning/personal/"
      },
      {
        "trust": 0.5,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.5,
        "url": "http://secunia.com/advisories/about_secunia_advisories/"
      },
      {
        "trust": 0.4,
        "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10024"
      },
      {
        "trust": 0.4,
        "url": "http://secunia.com/vulnerability_intelligence/"
      },
      {
        "trust": 0.3,
        "url": "http://www-01.ibm.com/software/lotus/products/notes/"
      },
      {
        "trust": 0.3,
        "url": "http://www.autonomy.com/content/products/keyview/index.en.html"
      },
      {
        "trust": 0.3,
        "url": "https://www-304.ibm.com/support/docview.wss?uid=swg21500034"
      },
      {
        "trust": 0.3,
        "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=913"
      },
      {
        "trust": 0.3,
        "url": "http://conference.first.org/"
      },
      {
        "trust": 0.1,
        "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026amp;pvid=security_advisory\u0026amp;year=2011\u0026amp;suid=20110531_00"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44877/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44877/#comments"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44877"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44878"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44878/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44878/#comments"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44779"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/products/corporate/evm/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44779/"
      },
      {
        "trust": 0.1,
        "url": "http://www.youtube.com/user/secunia#p/a/u/0/m1y9sjqr2sy"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44779/#comments"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44820/#comments"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44820/"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44820"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/50399/"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=50399"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/csi6beta"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/50399/#comments"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "db": "BID",
        "id": "48013"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "PACKETSTORM",
        "id": "102365"
      },
      {
        "db": "PACKETSTORM",
        "id": "102187"
      },
      {
        "db": "PACKETSTORM",
        "id": "101914"
      },
      {
        "db": "PACKETSTORM",
        "id": "102081"
      },
      {
        "db": "PACKETSTORM",
        "id": "115865"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "db": "BID",
        "id": "48013"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "db": "PACKETSTORM",
        "id": "102365"
      },
      {
        "db": "PACKETSTORM",
        "id": "102187"
      },
      {
        "db": "PACKETSTORM",
        "id": "101914"
      },
      {
        "db": "PACKETSTORM",
        "id": "102081"
      },
      {
        "db": "PACKETSTORM",
        "id": "115865"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2011-06-07T00:00:00",
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "date": "2011-07-18T00:00:00",
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "date": "2011-05-24T00:00:00",
        "db": "BID",
        "id": "48013"
      },
      {
        "date": "2011-06-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "date": "2011-07-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "date": "2011-06-17T04:44:22",
        "db": "PACKETSTORM",
        "id": "102365"
      },
      {
        "date": "2011-06-12T08:47:41",
        "db": "PACKETSTORM",
        "id": "102187"
      },
      {
        "date": "2011-06-01T04:21:47",
        "db": "PACKETSTORM",
        "id": "101914"
      },
      {
        "date": "2011-06-08T02:09:27",
        "db": "PACKETSTORM",
        "id": "102081"
      },
      {
        "date": "2012-08-24T05:43:31",
        "db": "PACKETSTORM",
        "id": "115865"
      },
      {
        "date": "2011-07-18T22:55:00.860000",
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "date": "2011-06-03T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2012-06-04T00:00:00",
        "db": "CERT/CC",
        "id": "VU#126159"
      },
      {
        "date": "2013-02-07T00:00:00",
        "db": "VULHUB",
        "id": "VHN-48493"
      },
      {
        "date": "2015-03-19T08:17:00",
        "db": "BID",
        "id": "48013"
      },
      {
        "date": "2011-06-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-001718"
      },
      {
        "date": "2011-07-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-001933"
      },
      {
        "date": "2013-02-07T04:41:04.423000",
        "db": "NVD",
        "id": "CVE-2011-0548"
      },
      {
        "date": "2011-07-19T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Autonomy Keyview IDOL contains multiple vulnerabilities in file parsers",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#126159"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer overflow",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201106-004"
      }
    ],
    "trust": 0.6
  }
}

GSD-2011-0548

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2011-0548

Aliases

CVE-2011-0548

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-0548",
    "description": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217.",
    "id": "GSD-2011-0548"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-0548"
      ],
      "details": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217.",
      "id": "GSD-2011-0548",
      "modified": "2023-12-13T01:19:04.741167Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2011-0548",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "44779",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/44779"
          },
          {
            "name": "1025595",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1025595"
          },
          {
            "name": "1025594",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1025594"
          },
          {
            "name": "1025596",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1025596"
          },
          {
            "name": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00",
            "refsource": "CONFIRM",
            "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:mail_security:6.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:mail_security:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:mail_security:7.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:7.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:5.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "9.5",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:brightmail_and_messaging_gateway:4.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:8.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:11.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "10.5.2",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:8.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:10.5.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:10.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:7.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:7.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:symantec:data_loss_prevention:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-0548"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file.  NOTE: this may overlap CVE-2011-1217."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1025595",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1025595"
            },
            {
              "name": "1025596",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1025596"
            },
            {
              "name": "1025594",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1025594"
            },
            {
              "name": "44779",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/44779"
            },
            {
              "name": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2011\u0026suid=20110531_00"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2013-02-07T04:41Z",
      "publishedDate": "2011-07-18T22:55Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-0548 (GCVE-0-2011-0548)

GHSA-HRW2-PV4C-V3HP

FKIE_CVE-2011-0548

CERTA-2011-AVI-326

Description

Solution

CERTA-2011-AVI-326

Description

Solution

VAR-201107-0115

GSD-2011-0548

Tags

Sightings

Nomenclature