CVE-2008-0236

Microsoft Visual FoxPro vfp6r.dll 6.0.8862.0 - Command Injection

Title source: llm

Description

An ActiveX control for Microsoft Visual FoxPro (vfp6r.dll 6.0.8862.0) allows remote attackers to execute arbitrary commands by invoking the DoCmd method.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmlremotewindows

https://www.exploit-db.com/exploits/4873

View Code ZIP pw:eip

References (5)

[Third Party Advisory] http://secunia.com/advisories/28417

[Exploit] http://www.securityfocus.com/bid/27205

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/39558

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4873

[Exploit] http://shinnai.altervista.org/exploits/txt/TXT_DiWu9j82RCq4zpaQAoxn.html

Scores

EPSS 0.3465

EPSS Percentile 97.0%

Details

Status published

Products (1)

microsoft/visual_foxpro 6.0

Published Jan 11, 2008

Tracked Since Feb 18, 2026