VYPR
Unrated severityNVD Advisory· Published Aug 17, 2010· Updated Jun 16, 2026

CVE-2010-0134

CVE-2010-0134

Description

Integer signedness error in rtfsr.dll in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via a crafted \ls keyword in a list override table entry in an RTF file, which triggers a buffer overflow.

Affected products

7
  • cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_export_sdk:10.9:*:*:*:*:*:*:*
  • cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_filter_sdk:10.9:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_viewer_sdk:10.4:*:*:*:*:*:*:*
    • cpe:2.3:a:autonomy:keyview_viewer_sdk:10.9:*:*:*:*:*:*:*
  • Range: =10.4, =10.9

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.