CVE-2007-5322: OS Command Injection
First published: Tue Oct 09 2007(Updated: )
Insecure method vulnerability in the FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual FoxPro 6.0 allows remote attackers to execute arbitrary programs by specifying them as an argument to the FoxDoCmd function.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Visual FoxPro | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-5322?
CVE-2007-5322 is rated as a high severity vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2007-5322?
To fix CVE-2007-5322, users should update to a secure version of Microsoft Visual FoxPro that addresses this vulnerability.
What does CVE-2007-5322 exploit?
CVE-2007-5322 exploits an insecure method in the FPOLE.OCX ActiveX control allowing arbitrary command execution.
Which software versions are affected by CVE-2007-5322?
CVE-2007-5322 affects Microsoft Visual FoxPro version 6.0 specifically.
Can CVE-2007-5322 be exploited remotely?
Yes, CVE-2007-5322 can be exploited remotely by attackers through crafted input to the FoxDoCmd function.
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/microsoft
- canonical/microsoft visual foxpro
- version/microsoft visual foxpro/6.0