CVE-2008-4699

Опубликовано: 22 окт. 2008

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Insecure method vulnerability in the ActiveX control (PAWWeb11.ocx) in Peachtree Accounting 2004 allows remote attackers to execute arbitrary programs via the ExecutePreferredApplication method.

Ссылки

http://jbrownsec.blogspot.com/2008/09/peachtree-accounting-is-not-safe.html
http://secunia.com/advisories/31809
http://securityreason.com/securityalert/4471
http://www.securityfocus.com/bid/31096
Exploit
http://www.securitytracker.com/id?1020842
https://exchange.xforce.ibmcloud.com/vulnerabilities/45009
https://www.exploit-db.com/exploits/6414
http://jbrownsec.blogspot.com/2008/09/peachtree-accounting-is-not-safe.html
http://secunia.com/advisories/31809
http://securityreason.com/securityalert/4471
http://www.securityfocus.com/bid/31096
Exploit
http://www.securitytracker.com/id?1020842
https://exchange.xforce.ibmcloud.com/vulnerabilities/45009
https://www.exploit-db.com/exploits/6414

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:peachtree_accounting:2004:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.3924

Средний

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-32q7-wm3c-r52g

github

больше 3 лет назад