Product:

Mail_security

(Symantec)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 19
Date Id Summary Products Score Patch Annotated
2020-02-21 CVE-2012-6277 Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchange before 6.5.8, Symantec Mail Security for Domino before 8.1.1, Symantec Messaging Gateway before 10.0.1, Symantec Data Loss Prevention (DLP) before 11.6.1, IBM Notes 8.5.x, IBM Lotus Domino 8.5.x before 8.5.3 FP4, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, related to... Autonomy_keyview_idol, Domino, Notes, Data_loss_prevention_endpoint, Data_loss_prevention_enforce\/detection_servers, Mail_security, Messaging_gateway N/A
2019-11-15 CVE-2019-12759 Symantec Endpoint Protection Manager (SEPM) and Symantec Mail Security for MS Exchange (SMSMSE), prior to versions 14.2 RU2 and 7.5.x respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. Endpoint_protection_manager, Mail_security N/A
2005-02-08 CVE-2005-0249 Heap-based buffer overflow in the DEC2EXE module for Symantec AntiVirus Library allows remote attackers to execute arbitrary code via a UPX compressed file containing a negative virtual offset to a crafted PE header. Antivirus_scan_engine, Brightmail_antispam, Client_security, Gateway_security, Mail_security, Norton_antivirus, Norton_internet_security, Norton_system_works, Sav_filter_domino_nt_ports, Sav_filter_for_domino_nt, Web_security N/A
2011-07-18 CVE-2011-0548 Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention (DLP) before 10.5.3 and 11.x before 11.1, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .prz file. NOTE: this may overlap CVE-2011-1217. Brightmail_and_messaging_gateway, Data_loss_prevention, Mail_security N/A
2010-08-17 CVE-2010-0131 Stack-based buffer overflow in the SpreadSheet Lotus 123 reader (wkssr.dll), as used in Autonomy KeyView 10.4 and 10.9, Symantec Mail Security, and possibly other products, allows remote attackers to execute arbitrary code via unspecified vectors related to floating point conversion in unknown record types. Keyview_export_sdk, Keyview_filter_sdk, Keyview_viewer_sdk, Mail_security N/A
2009-09-01 CVE-2009-3037 Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment. Keyview, Lotus_notes, Brightmail_appliance, Data_loss_prevention_detection_servers, Data_loss_prevention_endpoint_agents, Mail_security, Mail_security_appliance N/A
2010-03-05 CVE-2009-3032 Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow. Lotus_notes, Brightmail_gateway, Data_loss_prevention_detection_servers, Data_loss_prevention_endpoint_agents, Im_manager_2007, Mail_security N/A
2009-03-18 CVE-2008-4564 Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file. Keyview_export_sdk, Keyview_filter_sdk, Keyview_viewer_sdk, Lotus_notes, Altiris_deployment_solution, Brightmail, Data_loss_prevention_detection_servers, Data_loss_prevention_endpoint_agents, Enforce, Mail_security N/A
2008-04-10 CVE-2007-6020 Multiple stack-based buffer overflows in foliosr.dll in the Folio Flat File speed reader in Autonomy (formerly Verity) KeyView 10.3.0.0, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, allow remote attackers to execute arbitrary code via a long attribute value in a (1) DI, (2) FD, (3) FT, (4) JD, (5) JL, (6) LE, (7) OB, (8) OD, (9) OL, (10) PN, (11) PS, (12) PW, (13) RD, (14) QL, or (15) TS tag in a .fff file. Docconverter, Keyview, Lotus_notes, Mail_security, Mail_security_appliance N/A
2007-11-10 CVE-2007-5910 Stack-based buffer overflow in Autonomy (formerly Verity) KeyView Viewer, Filter, and Export SDK before 9.2.0.12, as used by ActivePDF DocConverter, wp6sr.dll in IBM Lotus Notes 8.0 and before 7.0.3, Symantec Mail Security, and other products, allows remote attackers to execute arbitrary code via a crafted WordPerfect (WPD) file. Docconverter, Keyview_export_sdk, Keyview_filter_sdk, Keyview_viewer_sdk, Lotus_notes, Mail_security N/A