Unrated severityNVD Advisory· Published Aug 17, 2010· Updated Apr 29, 2026

CVE-2010-1525

Description

Integer underflow in the SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted size for an unspecified record type, which triggers a heap-based buffer overflow.

Affected products

Autonomy Corporation/Keyview Export Sdk2 versions
cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:autonomy:keyview_export_sdk:10.4:*:*:*:*:*:*:*
- cpe:2.3:a:autonomy:keyview_export_sdk:10.9:*:*:*:*:*:*:*
Autonomy Corporation/Keyview Filter Sdk2 versions
cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:autonomy:keyview_filter_sdk:10.4:*:*:*:*:*:*:*
- cpe:2.3:a:autonomy:keyview_filter_sdk:10.9:*:*:*:*:*:*:*
Autonomy Corporation/Keyview Viewer Sdk2 versions
cpe:2.3:a:autonomy:keyview_viewer_sdk:10.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:autonomy:keyview_viewer_sdk:10.4:*:*:*:*:*:*:*
- cpe:2.3:a:autonomy:keyview_viewer_sdk:10.9:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/secunia_research/2010-49/nvdVendor Advisory
www-01.ibm.com/support/docview.wssnvd
www.securityfocus.com/bid/41928nvd
www.symantec.com/security_response/securityupdates/detail.jspnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000