|TREND MICRO CUSTOMER PROTECTION||Trend Micro TippingPoint IPS customers are protected against this vulnerability by Digital Vaccine protection filter ID 4660,4662,4663,4697,4698,. For further product information on the TippingPoint IPS: http://www.tippingpoint.com|
Several vulnerabilities exist in the popular Verity KeyView SDK used in many enterprise applications like IBM Lotus Notes. When parsing several different file formats a standard stack overflow occurs allowing a malicious user to gain complete control of the affected machine under the rights of the currently logged in user. The problem lies when copying user supplied data to a stack based buffer without any boundary conditions.
The following file formats have been identified as vulnerable:
Adobe Acrobat FrameMaker - .mif
IBM has issued an update to correct this vulnerability. More details can be found at: