| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS14-004 | Vulnerability in Microsoft Dynamics AX Could Allow Denial of Service (2880826) | Microsoft Dynamics | Important | 15-01-2014 |
Technical Information
Brief overview of the risk:
This security update resolves one privately reported vulnerability in Microsoft Dynamics AX. The vulnerability could allow denial of service if an authenticated attacker submits specially crafted data to an affected Microsoft Dynamics AX Application Object Server (AOS) instance.
Detailed Information on the risk:
A denial of service vulnerability exists in Microsoft Dynamics AX that could allow an attacker to cause an AOS instance to become unresponsive.
Further information on this exploit is available at : MS14-004
Affected Software
Microsoft Dynamics AX 4.0 Service Pack 2Microsoft Dynamics AX 2009 Service Pack 1
Microsoft Dynamics AX 2012
Microsoft Dynamics AX 2012 R2