Vulnerabilities > CVE-2008-4699 - Insecure Method vulnerability in Microsoft Peachtree Accounting 2004
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Insecure method vulnerability in the ActiveX control (PAWWeb11.ocx) in Peachtree Accounting 2004 allows remote attackers to execute arbitrary programs via the ExecutePreferredApplication method.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Peachtree Accounting 2004 (PAWWeb11.ocx) ActiveX Insecure Method. CVE-2008-4699. Remote exploit for windows platform |
| file | exploits/windows/remote/6414.html |
| id | EDB-ID:6414 |
| last seen | 2016-01-31 |
| modified | 2008-09-10 |
| platform | windows |
| port | |
| published | 2008-09-10 |
| reporter | Jeremy Brown |
| source | https://www.exploit-db.com/download/6414/ |
| title | Peachtree Accounting 2004 PAWWeb11.ocx ActiveX Insecure Method |
| type | remote |
References
- http://jbrownsec.blogspot.com/2008/09/peachtree-accounting-is-not-safe.html
- http://secunia.com/advisories/31809
- http://securityreason.com/securityalert/4471
- http://www.securityfocus.com/bid/31096
- http://www.securitytracker.com/id?1020842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45009
- https://www.exploit-db.com/exploits/6414