Overview
There is a vulnerability in Microsoft Visual FoxPro 6.0 that allows remote attackers to execute Visual FoxPro applications with the privileges of the victim user.
Description
Microsoft Visual FoxPro 6.0 contains an unspecified vulnerability that allows remote attackers to execute arbitrary Visual FoxPro applications on a victim's computer. The attacker's code would run with the privileges of the victim user. Successful exploitation of this vulnerability requires the presence of either Visual FoxPro 6.0 or its runtime components. |
Impact
This vulnerability allows remote attackers to run malicious Visual FoxPro applications on affected systems. |
Solution
Apply a patch Microsoft has published Microsoft Security Bulletin MS02-049 to address this issue. For more information, please see |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This document is based upon information provided by Microsoft.
This document was written by Jeffrey P. Lanza.
Other Information
| CVE IDs: | CVE-2002-0696 |
| Severity Metric: | 11.81 |
| Date Public: | 2002-09-04 |
| Date First Published: | 2002-09-12 |
| Date Last Updated: | 2002-09-17 17:20 UTC |
| Document Revision: | 4 |