← back
CVE-2018-17408

CVE-2018-17408

EPSS 19.0%
Stack-based buffer overflows in Zahir Accounting Enterprise Plus 6 through build 10b allow remote attackers to execute arbitrary code via a crafted CSV file that is accessed through the Import CSV File menu.
Affected products
n/a · n/a
public PoCs found4
cve_referencewww.exploit-db.com/exploits/45505/unverifiedcve_referencewww.exploit-db.com/exploits/45560/unverifiedexploitdbwww.exploit-db.com/exploits/45560unverifiedexploitdbwww.exploit-db.com/exploits/45505unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.spentera.id/zahir-accounting-enterprise-plus-6/https://www.exploit-db.com/exploits/45505/https://www.exploit-db.com/exploits/45560/