ID CVE-2008-4699
Summary Insecure method vulnerability in the ActiveX control (PAWWeb11.ocx) in Peachtree Accounting 2004 allows remote attackers to execute arbitrary programs via the ExecutePreferredApplication method.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:peachtree_accounting:2004:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:peachtree_accounting:2004:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 29-09-2017 - 01:32)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
bid 31096
exploit-db 6414
misc http://jbrownsec.blogspot.com/2008/09/peachtree-accounting-is-not-safe.html
sectrack 1020842
secunia 31809
sreason 4471
xf peachtreeaccounting-pawweb11-code-execution(45009)
Last major update 29-09-2017 - 01:32
Published 22-10-2008 - 22:00
Last modified 29-09-2017 - 01:32
Back to Top