VYPR
Unrated severityNVD Advisory· Published Aug 17, 2010· Updated Jun 16, 2026

CVE-2010-0126

CVE-2010-0126

Description

Heap-based buffer overflow in an unspecified library in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via a crafted compound file, as demonstrated using a Quattro Pro file, which is not properly handled by the Quattro speed reader (qpssr.dll).

Affected products

7
  • cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_export_sdk:10.9:*:*:*:*:*:*:*
  • cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_filter_sdk:10.9:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_viewer_sdk:10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_viewer_sdk:10.9:*:*:*:*:*:*:*
  • Range: 10.4, 10.9

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.