Intrusion Prevention

MS.Visual.FoxPro.6.0.Fpole.Memory.Corruption

Description

This indicates an attempt to exploit a stack based Buffer Overflow vulnerability in the Microsoft Visual FoxPro ActiveX control.
The vulnerability is located in the "FPOLE.OCX" ActiveX control, through
misuse of "FoxDoCmd" method. It may allow remote attackers to execute
arbitrary code in the context of the application using the affected ActiveX
control. Failed exploit attempts will likely cause the program to crash,
resulting in a denial of service condition.

Affected Products

Microsoft Visual FoxPro 6.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2007-4790