CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
80.7%
There is a vulnerability in Microsoft Visual FoxPro 6.0 that allows remote attackers to execute Visual FoxPro applications with the privileges of the victim user.
Microsoft Visual FoxPro 6.0 contains an unspecified vulnerability that allows remote attackers to execute arbitrary Visual FoxPro applications on a victim’s computer. The attacker’s code would run with the privileges of the victim user. Successful exploitation of this vulnerability requires the presence of either Visual FoxPro 6.0 or its runtime components.
This vulnerability allows remote attackers to run malicious Visual FoxPro applications on affected systems.
Apply a patch
Microsoft has published Microsoft Security Bulletin MS02-049 to address this issue. For more information, please see
http://www.microsoft.com/technet/security/bulletin/MS02-049.asp
539001
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Notified: September 04, 2002 Updated: September 17, 2002
Affected
We have not received a statement from the vendor.
The vendor has not provided us with any further information regarding this vulnerability.
Microsoft has published Microsoft Security Bulletin MS02-049 to address this issue. For more information, please see
http://www.microsoft.com/technet/security/bulletin/MS02-049.asp
If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23539001 Feedback>).
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
<http://www.microsoft.com/technet/security/bulletin/MS02-049.asp>
This document is based upon information provided by Microsoft.
This document was written by Jeffrey P. Lanza.
CVE IDs: | CVE-2002-0696 |
---|---|
Severity Metric: | 11.81 Date Public: |