Insecure Method Vulnerability in Microsoft Visual FoxPro 6.0 ActiveX Control
CVE-2007-5322

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Foxpro
Vendor: CVE Published:; 9 October 2007

Summary

The FPOLE.OCX ActiveX control in Microsoft Visual FoxPro 6.0 contains an insecure method vulnerability that allows remote attackers to execute arbitrary programs. This can be exploited by providing a specially crafted argument to the FoxDoCmd function, potentially leading to unauthorized command execution on affected systems. Proper security measures should be taken to mitigate this risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/37035

vdb-entryx_refsource_XF

http://shinnai.altervista.org/exploits/txt/TXT_14md9AHOoC...

x_refsource_MISC

https://www.exploit-db.com/exploits/4506

exploitx_refsource_EXPLOIT-DB

EPSS Score

35% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 9, 2007
Vulnerability Reserved
Oct 9, 2007