Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intuit vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-6387
Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote malicious users to execute ar...
Intuit Quicken
Intuit Quicktax
Intuit Bookkeeping
Vantage Linquistics Answerworks
Intuit Turbo Tax
Microsoft Activex 4.0.0.42
Intuit Proseries
Intuit Quickbooks
1 EDB exploit
9.3
CVSSv2
CVE-2007-4471
Multiple unspecified vulnerabilities in the Intuit QuickBooks Online Edition ActiveX control prior to 10 allow remote malicious users to create or overwrite arbitrary files via unspecified arguments to the (1) httpGETToFile, (2) httpPOSTFromFile, and possibly other methods, proba...
Intuit Quickbooks
9.3
CVSSv2
CVE-2007-0322
Multiple stack-based buffer overflows in the Intuit QuickBooks Online Edition ActiveX control prior to 10 allow remote malicious users to execute arbitrary code via unspecified vectors.
Intuit Quickbooks
6.9
CVSSv2
CVE-2010-5198
Multiple untrusted search path vulnerabilities in Intuit QuickBooks 2010 allow local users to gain privileges via a Trojan horse (1) dbicudtx11.dll, (2) mfc90enu.dll, or (3) mfc90loc.dll file in the current working directory, as demonstrated by a directory that contains a .des, ....
Intuit Quickbooks 2010
6.8
CVSSv2
CVE-2012-2418
Heap-based buffer overflow in the intu-help-qb (aka Intuit Help System Async Pluggable Protocol) handlers in HelpAsyncPluggableProtocol.dll in Intuit QuickBooks 2009 through 2012, when Internet Explorer is used, allows remote malicious users to cause a denial of service (memory c...
Intuit Quickbooks 2011
Intuit Quickbooks 2012
Intuit Quickbooks 2009
Intuit Quickbooks 2010
5
CVSSv2
CVE-2018-11338
Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows malicious users to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vector...
Intuit Lacerte
5
CVSSv2
CVE-2004-2081
The samiftp.dll library in Sami FTP Server 1.1.3 allows local users to cause a denial of service (pmsystem.exe crash) by issuing (1) a CD command with a tilde (~) character or dot dot (/../) or (2) a GET command for an unavailable file.
Karjasoft Sami Ftp Server 1.1.3
1 EDB exploit
5
CVSSv2
CVE-2004-0298
CesarFTP 0.99e allows remote malicious users to cause a denial of service (CPU consumption) via a long RETR parameter.
Aclogic Cesarftp 0.99e
1 EDB exploit
5
CVSSv2
CVE-2004-0255
Xlight 1.52, with log to screen enabled, allows remote malicious users to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buf...
Xlight Ftp Server Xlight Ftp Server 1.25
Xlight Ftp Server Xlight Ftp Server 1.41
Xlight Ftp Server Xlight Ftp Server 1.45
Xlight Ftp Server Xlight Ftp Server 1.52
1 EDB exploit
5
CVSSv2
CVE-2004-0287
Xlight FTP server 1.52 allows remote authenticated users to cause a denial of service (crash) via a RETR command with a long argument containing a large number of / (slash) characters, possibly triggering a buffer overflow.
Xlight Ftp Server Xlight Ftp Server 1.52
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »