327 matches found
CVE-2010-2083
Microsoft Dynamics GP has a default value of ACCESS for the system password, which might make it easier for remote authenticated users to bypass intended access restrictions via unspecified vectors...
Design/Logic Flaw
Microsoft Dynamics GP has a default value of ACCESS for the system password, which might make it easier for remote authenticated users to bypass intended access restrictions via unspecified vectors...
CVE-2010-2083
CVE-2010-2083 involves Microsoft Dynamics GP where the system password has a default value of ACCESS. The connected sources confirm this as a design/configuration issue that could allow remote authenticated users to bypass access restrictions via unspecified vectors. The documents do not specify ...
CVE-2010-2083
Microsoft Dynamics GP has a default value of ACCESS for the system password, which might make it easier for remote authenticated users to bypass intended access restrictions via unspecified vectors...
CVE-2010-2011
Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive information by decrypting a field's contents...
CVE-2010-2011
Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive information by decrypting a field's contents...
Code injection
Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive information by decrypting a field's contents...
CVE-2010-2011
Microsoft Dynamics GP is affected by CVE-2010-2011, where a substitution cipher used to encrypt the system password field (and unspecified other fields) can allow remote authenticated users to decrypt content and obtain sensitive information. The vulnerability stems from weak/encryption method us...
CVE-2010-2011
Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive information by decrypting a field's contents...
Microsoft Windows kernel privilege escalation
Invalid exception handling in GP trap handler allows ring0 privilege escalation...
Privilege escalation
The kernel in Microsoft Windows NT 3.1 through Windows 7, including Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2, when access to 16-bit applications is enabled on a 32-bit x86 platform, does not properly...
Microsoft Windows NT User Mode To Ring 0 Escalation
Microsoft Windows NT GP Trap Handler Allows Users to Switch Kernel Stack ------------------------------------------------------------------------- CVE-2010-0232 In order to support BIOS service routines in legacy 16bit applications, the Windows NT Kernel supports the concept of BIOS calls in the...
Microsoft Windows NT200020032008XPVista7 - KiTrap0D User Mode to Ring Escalation (MS10-015)
Microsoft Windows NT200020032008XPVista7 - KiTrap0D User Mode to Ring Escalation MS10-015 Exploit-DB Mirror: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/11199.zip KiTrap0D.zip E-DB Note: Make sure to run "vdmallowed.exe" pre-compiled inside the subfolder...
Windows NT User Mode to Ring 0 Escalation Vulnerability
Exploit for unknown platform in category local exploits ======================================================= Windows NT User Mode to Ring 0 Escalation Vulnerability ======================================================= Microsoft Windows NT GP Trap Handler Allows Users to Switch Kernel Stack...
Microsoft Windows NT/2000/2003/2008/XP/Vista/7 - 'KiTrap0D' User Mode to Ring Escalation (MS10-015)
Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/11199.zip KiTrap0D.zip E-DB Note: Make sure to run "vdmallowed.exe" pre-compiled inside the subfolder. Microsoft Windows NT GP Trap Handler Allows Users to Switch Kernel Stack...
Microsoft Dynamics GP < 10.0 Multiple Vulnerabilities
Microsoft Dynamics GP formerly known as Great Plains, is installed on remote host. The installed version of Microsoft Dynamics GP is affected by multiple vulnerabilities. - By sending a specially crafted DPS message with a very long IP address or a string, to Distributed Process Server DPS or...
Microsoft Dynamics GP Distributed Process Manager Detection
The remote host is running Microsoft Dynamics GP Distributed Process Manager. Dynamics GP is a business accounting and management software solution from Microsoft. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description...
Microsoft Dynamics GP拒绝服务和缓冲区溢出漏洞
BUGTRAQ ID: 29991 CVE ID:CVE-2006-5266 CVE-2006-5265 CNCVE ID:CNCVE-20065266 CNCVE-20065265 Microsoft Dynamics GP是一款高效解决方案,可以管理和集成组织内的财务、电子商务、供应链、制造、项目记帐、现场服务、客户关系和人力资源等。 Microsoft Dynamics GP存在多个安全问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务和缓冲区溢出攻击。 -Microsoft Dynamics...
CVE-2006-5266
Microsoft Dynamics GP (Great Plains) versions up to 9.0 are affected by multiple buffer-overflow vulnerabilities in DPS/DPM components. Exploitation possible via crafted DPS/DPM messages: long strings, long IPs, or invalid magic numbers, leading to remote code execution with partial impact on con...
CVE-2006-5266
Multiple buffer overflows in Microsoft Dynamics GP formerly Great Plains 9.0 and earlier allow remote attackers to execute arbitrary code via 1 a crafted Distributed Process Manager DPM message to the a DPM component, or a 2 long string or 3 long IP address in a Distributed Process Server DPS...