This script is Copyright (C) 2008-2014 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through the web client.
The remote host contains a version of the ActiveX control for Visual
Basic 6.0 Runtime Extended Files that may allow an attacker to execute
arbitrary code on the remote host by constructing a malicious web page
and enticing a victim to visit it.
Note that this control may have been included with Visual Studio or
FoxPro or as part of a third-party application created by one of those
See also :
Microsoft has released a set of patches for Microsoft Office /
Frontpage / FoxPro / Studio.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : true