更新日期:2010-03-10
受影响系统:
Symantec Mail Security for SMTP 5.0.x描述:
Symantec Mail Security for Microsoft Exchange 6.0.x
Symantec Mail Security for Microsoft Exchange 5.0.x
Autonomy Keyview 10.5
Symantec Brightmail Gateway 8.0.x
Symantec Mail Security for Domino 8.0.2
Symantec Mail Security for Domino 8.0.1
Symantec Mail Security for Domino 8.0
Symantec Mail Security for Domino 7.5.x
Symantec Data Loss Prevention Enforce/Detection Servers 9.x
Symantec Data Loss Prevention Enforce/Detection Servers 8.1.1
Symantec Data Loss Prevention Enforce/Detection Servers 10.0
Symantec Data Loss Prevention Endpoint Agents 9.x
Symantec Data Loss Prevention Endpoint Agents 8.1.1
Symantec Data Loss Prevention Endpoint Agents 10.0
Symantec IM Manager 2007 8.x
BUGTRAQ ID: 38468
CVE ID: CVE-2009-3032
KeyView是用于导出、转换和查看各种格式文件的软件包。
KeyView的kvolefio.dll库在解析OLE文件时从文件中读取了整数值并未经任何验证便使用这个值用于计算所要分配的内存数量。如果用户提供了足够大的数值,计算就可能溢出,导致分配不充分的堆缓冲区;软件之后将数据拷贝到了这个缓冲区,造成溢出。
<*来源:Joshua J. Drake
链接:http://secunia.com/advisories/38797/
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100304_00
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=858
*>
建议:
厂商补丁:
Symantec
--------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100304_00
