PT-2007-1794 · Intuit · Intuit Quickbooks Online Edition

Will Dormann

Published

2007-09-05

Updated

2017-07-29

CVE-2007-0322

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Intuit QuickBooks Online Edition versions prior to 10

Description: The issue is related to multiple stack-based buffer overflows in the ActiveX control, which can be exploited by remote attackers to execute arbitrary code. The exact vectors used for the exploitation are not specified.

Recommendations: For versions prior to 10, update to version 10 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2007-0322

Affected Products

Intuit Quickbooks Online Edition

PT-2007-1794 · Intuit · Intuit Quickbooks Online Edition

CVE-2007-0322

Weakness Enumeration

Related Identifiers

Affected Products

References · 5