Insecure Method Vulnerability in Microsoft Visual FoxPro 6.0 ActiveX Control
CVE-2007-5322

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Foxpro
Vendor: CVE Published:; 9 October 2007

What is CVE-2007-5322?

The FPOLE.OCX ActiveX control in Microsoft Visual FoxPro 6.0 contains an insecure method vulnerability that allows remote attackers to execute arbitrary programs. This can be exploited by providing a specially crafted argument to the FoxDoCmd function, potentially leading to unauthorized command execution on affected systems. Proper security measures should be taken to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/37035

vdb-entryx_refsource_XF

http://shinnai.altervista.org/exploits/txt/TXT_14md9AHOoC...

x_refsource_MISC

https://www.exploit-db.com/exploits/4506

exploitx_refsource_EXPLOIT-DB

EPSS Score

35% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 9, 2007
Vulnerability Reserved
Oct 9, 2007