CVE-2007-6387 (ActiveX, AnswerWorks, Turbo Tax, Quickbooks, Quicken, QuickTax, Bookkeeping, ProS...)

CVE-2007-6387 (ActiveX, AnswerWorks, Turbo Tax, Quickbooks, Quicken, QuickTax, Bookkeeping, ProS...)
BugsAlert Home > CVE-2007-6387 (ActiveX, AnswerWorks, Turbo Tax, Quickbooks, Quicken, QuickTax, Bookkeeping, ProS...)




Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote attackers to execute arbitrary code via long arguments to the (1) GetHistory, (2) GetSeedQuery, (3) SetSeedQuery, and possibly other methods. NOTE: some of these details are obtained from third party information. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6387 Learn more about CVE-2007-6387 (ActiveX, AnswerWorks, Turbo Tax, Quickbooks, Quicken, QuickTax, Bookkeeping, ProS...)


Tags: cve-2007-6387 activex answerworks turbo tax quickbooks quicken quicktax bookkeeping pros...

Related Items
CVE-2008-0416 (Firefox)
CVE-2008-0423 (Lama Software)
TROJ_PAKES.XZ
Assetman "order_by" SQL Injection Vulnerability
Vuln: Horde Turba Contact Manager '/imp/test.php' Cross Site Scripting Vulnerability
MS08-020 ? Important: Vulnerability in DNS Client Could Allow Spoofing (945553) - Version:1.2
Digital Smart Software Products NCTAudioFile2 ActiveX Control Buffer Overflow