7 matches found
CVE-2008-4699
Insecure method vulnerability in the ActiveX control PAWWeb11.ocx in Peachtree Accounting 2004 allows remote attackers to execute arbitrary programs via the ExecutePreferredApplication method...
CVE-2008-4699
The CVE-2008-4699 entry concerns Peachtree Accounting 2004, specifically the ActiveX control PAWWeb11.ocx. The vulnerability arises in the ExecutePreferredApplication method, enabling remote attackers to execute arbitrary programs. The available connected documents affirm this insecure method vul...
Peachtree Accounting 'PAWWeb11.ocx' ActiveX控件不安全方法漏洞
BUGTRAQ ID: 31096 CNCAN ID:CNCAN-2008091105 Peachtree Accounting是一款商务会计软件。 Peachtree Accounting包含的'PAWWeb11.ocx' ActiveX控件存在不安全方法调用问题,远程攻击者可以利用漏洞以应用程序权限执行任意应用程序。 "ExecutePreferredApplication"方法对用户提交的参数缺少正确检查,直接提交系统应用程序可导致以控件权限执行。 Sage Peachtree Accounting 2004...
Peachtree Accounting 2004 - PAWWeb11.ocx ActiveX Insecure Method
Peachtree Accounting 2004 - PAWWeb11.ocx ActiveX Insecure Method arg1="C:/WINDOWS/system32/calc.exe" target.ExecutePreferredApplication arg1 milw0rm.com 2008-09-10...
Peachtree Accounting 2004 (PAWWeb11.ocx) ActiveX Insecure Method
No description provided by source. !-- Jeremy Brown [email protected]/jbrownsec.blogspot.com Peachtree Accounting Remote SfS/SfI Exploit Tested on Peachtree Accounting 2004 / Windows XP / IE6 All Peachtree software that includes PAWWeb11.ocx are assumed vulnerable -- htmlbody object id=target...
ptreexxec.txt
arg1="C:/WINDOWS/system32/calc.exe" target.ExecutePreferredApplication arg1...
Peachtree Accounting 2004 (PAWWeb11.ocx) ActiveX Insecure Method
Exploit for unknown platform in category remote exploits ================================================================ Peachtree Accounting 2004 PAWWeb11.ocx ActiveX Insecure Method ================================================================ arg1="C:/WINDOWS/system32/calc.exe"...