CVE-2002-0696

3 documents3 sources
Severity
7.5HIGH
EPSS
18.3%
top 4.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Visual Foxpro
Timeline
PublishedOct 4
Latest updateApr 30

Description

Microsoft Visual FoxPro 6.0 does not register its associated files with Internet Explorer, which allows remote attackers to execute Visual FoxPro applications without warning via HTML that references specially-crafted filenames.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-j2v6-mwqc-5gww: Microsoft Visual FoxPro 62022-04-30
CVEList
CVE-2002-0696: Microsoft Visual FoxPro 62004-09-01
CVE-2002-0696 (HIGH CVSS 7.5) | Microsoft Visual FoxPro 6.0 does no | cvebase.io