Buffer Overflow Vulnerabilities in Microsoft Dynamics GP by Microsoft
CVE-2006-5266

Currently unrated

Key Information:

Vendor: Microsoft
Status: Dynamics Gp
Vendor: CVE Published:; 31 December 2006

What is CVE-2006-5266?

Microsoft Dynamics GP, specifically version 9.0 and its earlier iterations, is susceptible to multiple buffer overflow vulnerabilities. These weaknesses allow remote attackers to execute arbitrary code by exploiting specially crafted messages sent to the Distributed Process Manager (DPM) component or by using excessively long strings or IP addresses in Distributed Process Server (DPS) messages. Successful exploitation could lead to unauthorized control over systems running vulnerable instances of Microsoft Dynamics GP.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25840

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/29991

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/25842

vdb-entryx_refsource_XF

EPSS Score

29% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 31, 2006
Vulnerability Reserved
Oct 13, 2006