Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:2199
HistorySep 08, 2007 - 12:00 a.m.

Intuit QuickBooks Online Edition ActiveX控件多个远程安全漏洞

2007-09-0800:00:00
Root
www.seebug.org
9

0.045 Low

EPSS

Percentile

91.5%

JSON

BUGTRAQ ID: 25544
CVE(CAN) ID: CVE-2007-4471,CVE-2007-0322

QuickBooks Online Edition是一款在线财务软件。

QuickBooks Online Edition的ActiveX控件处理在处理畸形用户请求时存在漏洞,远程攻击者可能利用此漏洞控制用户系统。

如果用户受骗打开了恶意HTML文档的话,QuickBooks Online Edition ActiveX控件的httpGETToFile()和httpPOSTFromFile()方式可能会向用户系统中任意位置下载或上传文件;其他一些方式中可能还会触发栈溢出,导致执行任意指令。

Intuit QuickBooks Online Edition 9
临时解决方法:

在IE中为以下CLSID设置kill bit:

{CF9DEB90-8DE3-11D5-BAE4-00105AAAFF94}
{4F720B9C-24B1-4948-A035-8853DC01F19E}
{2EFF8C97-F2A8-4395-9F47-9A06F998BF88}
{2CC3D8DE-18BF-43ff-8CB8-21B442300FD5}
{DBB177CC-6908-4b53-9BEE-F1C697818D65}
{A80D199B-CFDD-4da4-8C47-2310D5B8DD97}
{0D3983A9-4E29-4f33-8313-DA22B29D3F87}
{D92D7607-05D9-4dd8-B68B-D458948FB883}
{8CE3BAE6-AB66-40b6-9019-41E5282FF1E2}
{40F8967E-34A6-474a-837A-CEC1E7DAC54C}

或将以下文本保存为.REG文件并导入:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{CF9DEB90-8DE3-11D5-BAE4-00105AAAFF94}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{4F720B9C-24B1-4948-A035-8853DC01F19E}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{2EFF8C97-F2A8-4395-9F47-9A06F998BF88}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{2CC3D8DE-18BF-43ff-8CB8-21B442300FD5}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{DBB177CC-6908-4b53-9BEE-F1C697818D65}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{A80D199B-CFDD-4da4-8C47-2310D5B8DD97}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{0D3983A9-4E29-4f33-8313-DA22B29D3F87}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{D92D7607-05D9-4dd8-B68B-D458948FB883}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{8CE3BAE6-AB66-40b6-9019-41E5282FF1E2}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX
Compatibility{40F8967E-34A6-474a-837A-CEC1E7DAC54C}]
"Compatibility Flags"=dword:00000400

厂商补丁:

Intuit

目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

<a href=“http://oe.quickbooks.com/index.cfm” target=“_blank”>http://oe.quickbooks.com/index.cfm</a>

Related

nessus 2
prion 2
cert 2
cvelist 2
cve 2
nessus
nessus
Intuit QuickBooks Online Edition < 10 ActiveX Multiple Vulnerabilities
2007-09-18 00:00:00
MS07-069: Cumulative Security Update for Internet Explorer (942615)
2007-12-11 00:00:00
prion
prion
Path traversal
2007-09-05 19:17:00
Stack overflow
2007-09-05 19:17:00
cert
cert
Intuit QuickBooks Online Edition ActiveX control fails to properly restrict access to methods
2007-09-05 00:00:00
Intuit QuickBooks Online Edition ActiveX control stack buffer overflows
2007-09-05 00:00:00
cvelist
cvelist
CVE-2007-4471
2007-09-05 19:00:00
CVE-2007-0322
2007-09-05 19:00:00
cve
cve
CVE-2007-4471
2007-09-05 19:17:00
CVE-2007-0322
2007-09-05 19:17:00

0.045 Low

EPSS

Percentile

91.5%

JSON
Related for SSV:2199
nessus2prion2cert2cvelist2cve2