VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Sep 1, 2009· Updated Apr 23, 2026

CVE-2009-3037

CVE-2009-3037

Description

Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment.

Affected products

70
  • Autonomy Corporation/Keyview
    cpe:2.3:a:autonomy:keyview:*:*:*:*:*:*:*:*
  • IBM/Lotus Notes38 versions
    cpe:2.3:a:ibm:lotus_notes:5.0:*:*:*:*:*:*:*+ 37 more
    • cpe:2.3:a:ibm:lotus_notes:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.02:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:5.0.9a:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.5:*:fp2:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.5:*:fp3:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:6.5.6:*:fp2:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.2:*:fp1:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:8.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:8.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*
  • Symantec/Brightmail Appliance3 versions
    cpe:2.3:a:symantec:brightmail_appliance:5.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:symantec:brightmail_appliance:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:brightmail_appliance:8.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:brightmail_appliance:8.0.1:*:*:*:*:*:*:*
  • Symantec/Data Loss Prevention Detection Servers5 versions
    cpe:2.3:a:symantec:data_loss_prevention_detection_servers:7.2:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:symantec:data_loss_prevention_detection_servers:7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.1.1:*:linux:*:*:*:*:*
    • cpe:2.3:a:symantec:data_loss_prevention_detection_servers:8.1.1:*:windows:*:*:*:*:*
    • cpe:2.3:a:symantec:data_loss_prevention_detection_servers:9.0.1:*:linux:*:*:*:*:*
    • cpe:2.3:a:symantec:data_loss_prevention_detection_servers:9.0.1:*:windows:*:*:*:*:*
  • Symantec/Data Loss Prevention Endpoint Agents2 versions
    cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:8.1.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:8.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:data_loss_prevention_endpoint_agents:9.0.1:*:*:*:*:*:*:*
  • Symantec/Mail Security18 versions
    cpe:2.3:a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*+ 17 more
    • cpe:2.3:a:symantec:mail_security:5.0.0:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.10:*:microsoft_exchange:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.1.181:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.1.182:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.1.189:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.11:*:microsoft_exchange:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.1.200:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.12:*:microsoft_exchange:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0.1:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:5.0:*:smtp:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:6.0.6:*:microsoft_exchange:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:6.0.7:*:microsoft_exchange:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:6.0.8:*:microsoft_exchange:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:7.5.3.25:*:domino:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:7.5.4.29:*:domino:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:7.5.5.32:*:domino:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:7.5.6:*:domino:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security:8.0:*:domino:*:*:*:*:*
  • Symantec/Mail Security Appliance3 versions
    cpe:2.3:a:symantec:mail_security_appliance:5.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:symantec:mail_security_appliance:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security_appliance:5.0.0.24:*:*:*:*:*:*:*
    • cpe:2.3:a:symantec:mail_security_appliance:5.0.0.36:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

7

News mentions

0

No linked articles in our index yet.