Published: 10/09/2007 Updated: 23/07/2021

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in certain ActiveX controls in (1) FPOLE.OCX 6.0.8450.0 and (2) Foxtlib.ocx, as used in the Microsoft Visual FoxPro 6.0 fpole 1.0 Type Library; and Internet Explorer 5.01, 6 SP1 and SP2, and 7; allows remote malicious users to execute arbitrary code via a long first argument to the FoxDoCmd function.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet explorer 6
microsoft visual foxpro 6.0
microsoft internet explorer 5.01
microsoft internet explorer 7

<pre> <code><span style="font: 10pt Courier New;"><span class="general1-symbol">----------------------------------------------------------------------------------------------------------- <b>0-day: Microsoft Visual FoxPro 60 fpole 10 Type Library (FPOLEOCX v 6084500) Remote Stack Overflow</b> url: http:/ ...

CWE-119 http://www.securityfocus.com/bid/25571 http://www.us-cert.gov/cas/techalerts/TA08-043C.html http://www.securitytracker.com/id?1019378 http://marc.info/?l=bugtraq&m=120361015026386&w=2 http://www.vupen.com/english/advisories/2008/0512/references https://exchange.xforce.ibmcloud.com/vulnerabilities/36496 https://www.exploit-db.com/exploits/4369 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5481 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-010 https://nvd.nist.gov https://www.exploit-db.com/exploits/4369/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-4790

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect