Buffer Overflow Vulnerabilities in Microsoft Dynamics GP by Microsoft
CVE-2006-5266

Currently unrated

Key Information:

Vendor
Microsoft
Status
Dynamics Gp
Vendor
CVE Published:
31 December 2006

Summary

Microsoft Dynamics GP, specifically version 9.0 and its earlier iterations, is susceptible to multiple buffer overflow vulnerabilities. These weaknesses allow remote attackers to execute arbitrary code by exploiting specially crafted messages sent to the Distributed Process Manager (DPM) component or by using excessively long strings or IP addresses in Distributed Process Server (DPS) messages. Successful exploitation could lead to unauthorized control over systems running vulnerable instances of Microsoft Dynamics GP.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25840
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/29991
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/25842
vdb-entryx_refsource_XF

EPSS Score

29% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2006-5266 : Buffer Overflow Vulnerabilities in Microsoft Dynamics GP by Microsoft | SecurityVulnerability.io