Описание
The intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in HelpAsyncPluggableProtocol.dll in Intuit QuickBooks 2009 through 2012, when Internet Explorer is used, allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a URI that lacks a required delimiter.
Ссылки
- US Government Resource
- Exploit
- Exploit
- US Government Resource
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:intuit:quickbooks:2009:*:*:*:*:*:*:*
cpe:2.3:a:intuit:quickbooks:2010:*:*:*:*:*:*:*
cpe:2.3:a:intuit:quickbooks:2011:*:*:*:*:*:*:*
cpe:2.3:a:intuit:quickbooks:2012:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00178
Низкий
1.8 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
The intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in HelpAsyncPluggableProtocol.dll in Intuit QuickBooks 2009 through 2012, when Internet Explorer is used, allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a URI that lacks a required delimiter.
EPSS
Процентиль: 39%
0.00178
Низкий
1.8 Low
CVSS2
Дефекты
NVD-CWE-Other