PT-2008-1880 · Microsoft · Visual Foxpro+1
Shinnai
·
Publicado
2008-01-11
·
Atualizado
2017-09-29
·
CVE-2008-0236
CVSS v2.0
5.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Microsoft Visual FoxPro version 6.0.8862.0
Description
The issue allows remote attackers to execute arbitrary commands. This is achieved by invoking the
DoCmd method through an ActiveX control.Recommendations
For Microsoft Visual FoxPro version 6.0.8862.0, consider disabling the
DoCmd method as a temporary workaround until a patch is available. Restrict access to the ActiveX control vfp6r.dll to minimize the risk of exploitation.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Activex
Visual Foxpro