CVE-2008-0066
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-0066
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple buffer overflows in htmsr.dll in the HTML speed reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes 7.0.2 and 7.0.3, allow remote attackers to execute arbitrary code via an HTML document with (1) "large chunks of data," or a long URL in the (2) BACKGROUND attribute of a BODY element or (3) SRC attribute of an IMG element.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Autonomy KeyView缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Micro Focus Autonomy KeyView IDOL是英国Micro Focus公司的一个能够解码1000多个不同文件格式的库。 Autonomy KeyView存在缓冲区溢出漏洞,HTML快速阅读器(htmsr.dll)在处理<BODY>标签的background属性中链接、<IMG>标签的src属性的方式存在栈溢出,处理HTML文档中超大块的方式存在堆溢出。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-0066
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-0066
请登录查看更多情报信息。
Vendor Advisories for CVE-2008-0066 (10)
- http://secunia.com/secunia_research/2008-3/advisory/x_refsource_MISC
- http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21298453x_refsource_CONFIRM
Same Patch Batch · n/a · 2008-04-10 · 11 CVEs total
| CVE-2008-1719 | Tru-Zone NukeET 多个跨站请求伪造漏洞 | |
| CVE-2008-1720 | rsync 缓冲区错误漏洞 | |
| CVE-2008-1721 | Python zlib模块数字错误漏洞 | |
| CVE-2008-1722 | CUPS PNG过滤器多个整数溢出漏洞 | |
| CVE-2007-5399 | Autonomy KeyView模块EML阅读器 缓冲区溢出漏洞 | |
| CVE-2007-5405 | Autonomy KeyView模块Applix图形阅读器 缓冲区溢出漏洞 | |
| CVE-2007-5406 | Autonomy KeyView模块Applix图形阅读器 缓冲区溢出漏洞 | |
| CVE-2007-6020 | Autonomy KeyView模块Folio Flat File快速阅读器 缓冲区溢出漏洞 | |
| CVE-2008-1101 | Autonomy KeyView IDOL 缓冲区溢出漏洞 | |
| CVE-2008-1718 | IBM lotus_notes 缓冲区溢出漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2008-0066
No comments yet