VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Apr 10, 2008· Updated Apr 23, 2026

CVE-2008-1101

CVE-2008-1101

Description

Buffer overflow in kvdocve.dll in the KeyView document viewing engine in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes 7.0.2 and 7.0.3, allows remote attackers to execute arbitrary code via a long pathname, as demonstrated by a long SRC attribute of an IMG element in an HTML document.

Affected products

7
  • Autonomy Corporation/Keyview2 versions
    cpe:2.3:a:autonomy:keyview:10.3.0.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:autonomy:keyview:10.3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview:2.0.0.2:*:*:*:*:*:*:*
  • IBM/Lotus Notes5 versions
    cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

10

News mentions

0

No linked articles in our index yet.