CVE-2007-6387

awApi4.dll 4.0.0.42 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6387. PoCs published by Elazar.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Vantage Linguistics AnswerWorks 4 API ActiveX control. It uses a crafted input to overwrite the EIP and execute shellcode, demonstrating remote code execution (RCE) via a malicious HTML page.

Description

Multiple stack-based buffer overflows in the awApi4.AnswerWorks.1 ActiveX control in awApi4.dll 4.0.0.42, as used by Vantage Linguistics AnswerWorks, and Intuit Clearly Bookkeeping, ProSeries, QuickBooks, Quicken, QuickTax, and TurboTax, allow remote attackers to execute arbitrary code via long arguments to the (1) GetHistory, (2) GetSeedQuery, (3) SetSeedQuery, and possibly other methods. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Elazar · htmlremotewindows
https://www.exploit-db.com/exploits/4825

This exploit targets a buffer overflow vulnerability in the Vantage Linguistics AnswerWorks 4 API ActiveX control. It uses a crafted input to overwrite the EIP and execute shellcode, demonstrating remote code execution (RCE) via a malicious HTML page.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Vantage Linguistics AnswerWorks 4 API ActiveX Control (awApi4.dll version 4.0.0.44)
No auth needed
Prerequisites: Victim must visit a malicious webpage using Internet Explorer with the vulnerable ActiveX control installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/4194
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/4825
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26566
Patch x_refsource_confirm
http://www.intuit.com/support/security/
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26670
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39004
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/26815
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/4195

Scores

EPSS 0.3803
EPSS Percentile 98.4%

Details

CWE
CWE-119
Status published
Products (8)
intuit/bookkeeping
intuit/proseries
intuit/quickbooks
intuit/quicken
intuit/quicktax
intuit/turbo_tax
microsoft/activex 4.0.0.42
vantage_linquistics/answerworks
Published Dec 15, 2007
Tracked Since Feb 18, 2026