Vulnerability Description
Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow remote attackers to execute arbitrary code via (1) a crafted Distributed Process Manager (DPM) message to the (a) DPM component, or a (2) long string or (3) long IP address in a Distributed Process Server (DPS) message to the DPM or (b) DPS component.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Dynamics Gp | <= 9.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/29991
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25841
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25842
- http://www.securityfocus.com/bid/29991
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25841
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25842
FAQ
What is CVE-2006-5266?
CVE-2006-5266 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow remote attackers to execute arbitrary code via (1) a crafted Distributed Process Manager (DPM) message ...
How severe is CVE-2006-5266?
CVE-2006-5266 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5266?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Dynamics Gp.