CVE-2009-3032 Information

Description

Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK as used in IBM Lotus Notes 8.5 Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13 and other products allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow.

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=858 http://www.securityfocus.com/bid/38468 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100304_00 http://www-01.ibm.com/support/docview.wss?uid=swg21440812