RETIRED: Microsoft VFP_OLE_Server ActiveX Control Remote Command Execution Vulnerability

Bugtraq ID: 27199
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Jan 09 2008 12:00AM
Updated: Jan 22 2008 09:38PM
Credit: shinnai is credited with the discovery of this vulnerability.
Vulnerable: Microsoft VFP_OLE_Server ActiveX Control 0
+ Microsoft Internet Explorer 5.0.1 SP2
+ Microsoft Internet Explorer 5.0.1 SP1
+ Microsoft Internet Explorer 5.0.1 for Windows NT 4.0
+ Microsoft Internet Explorer 5.0.1 for Windows 98
+ Microsoft Internet Explorer 5.0.1 for Windows 95
+ Microsoft Internet Explorer 5.0.1 for Windows 2000
+ Microsoft Internet Explorer 5.0.1
+ Microsoft Internet Explorer 6.0
+ Microsoft Internet Explorer 5.5 SP2
+ Microsoft Internet Explorer 5.5 SP1
+ Microsoft Internet Explorer 5.5 preview
+ Microsoft Internet Explorer 5.5
+ Microsoft Internet Explorer 5.0 for Windows NT 4
+ Microsoft Internet Explorer 5.0 for Windows 98
+ Microsoft Internet Explorer 5.0 for Windows 95
+ Microsoft Internet Explorer 5.0 for Windows 2000
+ Microsoft Internet Explorer 5.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus