Microsoft Visual FoxPro Unsupported Version Detection

Microsoft Visual FoxPro has been discontinued by Microsoft. Therefore, the installation of Visual FoxPro on the remote Windows host is unsupported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security...

Microsoft Visual FoxPro 6.0 (FPOLE.OCX 6.0.8450.0) - Remote PoC

No description provided by source. pre codespan style=font: 10pt Courier New;span class=general1-symbol----------------------------------------------------------------------------------------------------------- b0-day: Microsoft Visual FoxPro 6.0 fpole 1.0 Type Library FPOLE.OCX v. 6.0.8450.0...

Microsoft Windows Common Controls Remote Code Execution Vulnerability (2720573)

This host is missing a critical security update according to Microsoft Bulletin MS12-060. OpenVAS Vulnerability Test $Id: secpodms12-060.nasl 5912 2017-04-10 09:01:51Z teissa $ Microsoft Windows Common Controls Remote Code Execution Vulnerability 2720573 Authors: Veerendra G G Copyright: Copyrigh...

Microsoft GDI+ TIFF File Processing 'BitsPerSample' Tag Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes TIFF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts...

Microsoft Visual FoxPro vfp6r.dll DoCmd ActiveX Control Command Execution (CVE-2008-0236)

Microsoft Visual FoxPro 6.0 is designed for building data-centric Windows applications. Visual FoxPro 6.0 is shipped with a set of various ActiveX controls that are registered on the host upon installation. Specifically, an ActiveX control vfp6r.dll is included. There exists an access control...

Microsoft FlexGrid ActiveX Control Memory Corruption Vulnerability

Description Microsoft FlexGrid ActiveX control is prone to a remote memory-corruption vulnerability. Remote attackers can exploit this issue to execute arbitrary code in the context of the application using the ActiveX control typically Internet Explorer. Successful exploits will compromise the...

Microsoft Hierarchical FlexGrid ActiveX Control Memory Corruption Vulnerability

Description Microsoft Hierarchical FlexGrid ActiveX control is prone to a remote memory-corruption vulnerability. Remote attackers can exploit this issue to execute arbitrary code in the context of the application using the ActiveX control typically Internet Explorer. Successful exploits will...

Microsoft Visual FoxPro FPOLE.OCX ActiveX控件远程栈溢出漏洞（MS08-010）

BUGTRAQ ID: 25571 CVECAN ID: CVE-2007-4790 Visual FoxPro是微软发布的数据库开发工具。 Visual FoxPro的AcitveX控件实现上存在缓冲区溢出漏洞，远程攻击者可能利用此漏洞控制用户系统。 Visual FoxPro的Foxtlib.ocx和fpole.ocx ActiveX控件没有正确地验证对FoxDoCmd方式的输入，如果用户受骗访问了恶意站点，就可能触发栈溢出，导致在用户浏览器会话中执行任意指令。 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 6...

Microsoft Visual FoxPro ActiveX Control Buffer Overflow (MS08-010; CVE-2007-4790)

Microsoft Visual FoxPro is an application development tool for building database applications. This vulnerability is due to a memory corruption error in certain ActiveX objects of Microsoft Visual FoxPro when it is used in Microsoft Internet Explorer. A remote attacker could exploit this issue by...

Microsoft Visual FoxPro vfp6r.dll ActiveX控件任意代码执行漏洞

BUGTRAQ ID: 27205 Visual FoxPro是微软发布的数据库开发工具。 Visual FoxPro的vfp6r.dll ActiveX控件没有正确地验证对foxcommand或DoCmd方式的输入参数，如果用户受骗访问了恶意站点的话，就可能导致执行任意指令。 Microsoft Visual FoxPro 6.0 Microsoft --------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.microsoft.com/technet/security/ pre codespan...

CVE-2008-0236

An ActiveX control for Microsoft Visual FoxPro vfp6r.dll 6.0.8862.0 allows remote attackers to execute arbitrary commands by invoking the DoCmd method...

Design/Logic Flaw

An ActiveX control for Microsoft Visual FoxPro vfp6r.dll 6.0.8862.0 allows remote attackers to execute arbitrary commands by invoking the DoCmd method...

CVE-2008-0236

An ActiveX control for Microsoft Visual FoxPro vfp6r.dll 6.0.8862.0 allows remote attackers to execute arbitrary commands by invoking the DoCmd method...

Microsoft VFP_OLE_Server ActiveX控件远程命令执行漏洞

Microsoft Visual FoxPro是一款数据库管理和应用软件开发系统。 Microsoft VFPOLEServer ActiveX控件存在设计问题，远程攻击者可以利用漏洞以应用程序进程权限执行任意命令。 问题是Microsoft VFPOLEServer控件不安全使用"foxcommand"函数，直接传递运行应用程序作为参数，可导致应用程序权限执行。 Microsoft VFPOLEServer ActiveX Control 0 + Microsoft Internet Explorer 6.0 + Microsoft Internet Explorer 5.5 SP2 ...

Microsoft Visual FoxPro FPOLE.OCX ActiveX控件任意命令执行漏洞

BUGTRAQ ID: 25977 CVECAN ID: CVE-2007-5322 Visual FoxPro是微软发布的数据库开发工具。 Visual FoxPro的FPOLE.OCX ActiveX控件没有正确地验证对FoxDoCmd方式的输入，如果用户受骗访问了恶意站点的话，就可能导致在浏览器会话中执行任意指令。 Microsoft Visual FoxPro 6.0 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.microsoft.com/technet/security/ object...

Microsoft Visual FoxPro 6.0 FPOLE.OCX Arbitrary Command Execution

No description provided by source. pre codespan style="font: 10pt Courier New;"span class="general1-symbol"body bgcolor="E0E0E0"----------------------------------------------------------------------------- bMicrosoft Visual FoxPro 6.0 FPOLE.OCX Arbitrary Command Execution/b...

msfp-exec.txt

----------------------------------------------------------------------------- Microsoft Visual FoxPro 6.0 FPOLE.OCX Arbitrary Command Execution url: http://www.microsoft.com Author: shinnai mail: shinnaiatautisticidotorg site: http://shinnai.altervista.org This was written for educational purpose...

Design/Logic Flaw

Insecure method vulnerability in the FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual FoxPro 6.0 allows remote attackers to execute arbitrary programs by specifying them as an argument to the FoxDoCmd function...

CVE-2007-5322

Insecure method vulnerability in the FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual FoxPro 6.0 allows remote attackers to execute arbitrary programs by specifying them as an argument to the FoxDoCmd function...

CVE-2007-5322

CVE-2007-5322 affects Microsoft Visual FoxPro 6.0 via the FPOLE.OCX 6.0.8450.0 ActiveX control. The vulnerability is an insecure method flaw that lets remote attackers run arbitrary programs by passing a command to the FoxDoCmd function. Public references indicate exploit availability (e.g., Expl...