Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple stack-based buffer overflows in Autonomy (formerly Verity) KeyView SDK before 9.2.0, as used in Lotus Notes 6.5.4 and 7.0, allow remote attackers to execute arbitrary code via (1) a UUE file containing an encoded file with a long filename handled by uudrdr.dll, (2) a compressed ZIP file with a long filename handled by kvarcve.dll, (3) a TAR archive with a long filename that is extracted to a directory with a long path handled by the TAR reader (tarrdr.dll), (4) an email that contains a long HTTP, FTP, or // link handled by the HTML speed reader (htmsr.dll) or (5) an email containing a crafted long link handled by the HTML speed reader (htmsr.dll).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Notes文件附件处理多个远程溢出和目录遍历漏洞
Vulnerability Description
Lotus Domino/Notes服务器是一款基于WEB协同工作的应用程序架构,运行在Linux/Unix和Microsoft Windows操作系统平台下。 IBM Lotus Notes中存在多个远程溢出和目录遍历漏洞,具体如下: IBM Lotus Notes的kvarcve.dll在解压ZIP文档创建压缩文件的完整路径名时存在栈溢出漏洞,如果用户在 Notes附件浏览器中解压了带有超长文件名的压缩文件时可能导致执行任意代码。 IBM Lotus Notes的uudrdr.dll在处理带有超长文件
CVSS Information
N/A
Vulnerability Type
N/A