Lucene search

K

[email protected]NVD:CVE-2007-4790

HistorySep 10, 2007 - 9:17 p.m.

CVE-2007-4790

2007-09-1021:17:00

CWE-119

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.964 High

EPSS

Percentile

99.6%

Stack-based buffer overflow in certain ActiveX controls in (1) FPOLE.OCX 6.0.8450.0 and (2) Foxtlib.ocx, as used in the Microsoft Visual FoxPro 6.0 fpole 1.0 Type Library; and Internet Explorer 5.01, 6 SP1 and SP2, and 7; allows remote attackers to execute arbitrary code via a long first argument to the FoxDoCmd function.

Affected configurations

NVD

Node

microsoftinternet_explorerMatch5.01

OR

microsoftinternet_explorerMatch6sp1

OR

microsoftinternet_explorerMatch6sp2

OR

microsoftinternet_explorerMatch7

OR

microsoftvisual_foxproMatch6.0

References

marc.info/?l=bugtraq&m=120361015026386&w=2

www.securityfocus.com/bid/25571

www.securitytracker.com/id?1019378

www.us-cert.gov/cas/techalerts/TA08-043C.html

www.vupen.com/english/advisories/2008/0512/references

docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-010

exchange.xforce.ibmcloud.com/vulnerabilities/36496

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5481

www.exploit-db.com/exploits/4369

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

Low

0.964 High

EPSS

Percentile

99.6%

Related for NVD:CVE-2007-4790

checkpoint_advisories1 prion1 seebug1 cvelist1 cve1 securityvulns2 nessus1