2 matches found
CVE-2008-5823
CVE-2008-5823 describes a denial-of-service vulnerability in Microsoft Money 2006 related to an ActiveX control (prtstb06.dll). When the control is used with Windows Script Host/WScript on Windows Vista, supplying a zero Startup property value can trigger an access violation and crash the applica...
CVE-2000-0777
CVE-2000-0777 concerns Microsoft Money: the password protection feature stores the password in plaintext, enabling local attackers with physical access to extract it. CVSSv2 base score 7.2 (HIGH) with LOCAL access, LOW attack complexity, and full impact on confidentiality, integrity, and availabi...