CVE-2007-5322

Insecure method vulnerability in the FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual FoxPro 6.0 allows remote attackers to execute arbitrary programs by specifying them as an argument to the FoxDoCmd function.

Published: Oct 10, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5322
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
microsoft / visual_foxpro	6.0	6.0.x

http://osvdb.org/38487
http://secunia.com/advisories/27165
http://shinnai.altervista.org/exploits/txt/TXT_14md9AHOoCycrnk9l095.html
http://www.securityfocus.com/bid/25977
https://exchange.xforce.ibmcloud.com/vulnerabilities/37035
https://www.exploit-db.com/exploits/4506

Vulnerability Database

289,689

CVE-2007-5322