Autonomy KeyView SDK Vulnerability

Wed, Mar 18 2009 16:19 Don

Autonomy KeyView SDK Vulnerability

US-CERT is aware of reports of a vulnerability that affects the Autonomy KeyView SDK wp6sr.dll library. This library is used by certain products, including Lotus Notes and Symantec, to support the handling of Word Perfect documents. By convincing a user to open a specially crafted Word Perfect document with an application using the affected Autonomy KeyView SDK library, a remote attacker may be able to execute arbitrary code.

US-CERT encourages users and administrators to do the following to help mitigate the risks:

IBM Lotus Notes users should review the IBM Flash Alert and implement the listed fixes or workarounds.

Symantec users should review Symantec Security Advisory SYM09-004 and implement the listed fixes or workarounds.

Registered Autonomy Users should review the related Autonomy alert (login required).

Full Details

Filed under: Alerts

DP's Security Bits

Search

Tags

News

Community

Syndication

Archives

Links of Interest

Microsoft

Malware Removal Help

Autonomy KeyView SDK Vulnerability