An ActiveX control in prtstb06.dll in Microsoft Money 2006, when used with WScript in Windows Script Host (WSH) on Windows Vista, allows remote attackers to cause a denial of service (access violation and application crash) via a zero value for the Startup property.
Max CVSS
4.3
EPSS Score
0.27%
Published
2009-01-02
Updated
2018-10-30
The password protection feature of Microsoft Money can store the password in plaintext, which allows attackers with physical access to the system to obtain the password, aka the "Money Password" vulnerability.
Max CVSS
7.2
EPSS Score
0.24%
Published
2000-10-20
Updated
2018-10-12
2 vulnerabilities found