2 matches found
CVE-2010-2083
CVE-2010-2083 involves Microsoft Dynamics GP where the system password has a default value of ACCESS. The connected sources confirm this as a design/configuration issue that could allow remote authenticated users to bypass access restrictions via unspecified vectors. The documents do not specify ...
CVE-2010-2011
Microsoft Dynamics GP is affected by CVE-2010-2011, where a substitution cipher used to encrypt the system password field (and unspecified other fields) can allow remote authenticated users to decrypt content and obtain sensitive information. The vulnerability stems from weak/encryption method us...