CVE-2012-2421
CVE-2012-2421 describes an absolute path traversal vulnerability in the Intuit QuickBooks Help System (HelpAsyncPluggableProtocol.dll) used by the intu-help-qb handlers. Affected products are QuickBooks 2009–2012 when Internet Explorer is used. The issue could allow an attacker to read arbitrary ...