This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through the web client.
The remote host contains a version of the ActiveX control for Visual
Basic 6.0 Runtime Extended Files that may allow an attacker to execute
arbitrary code on the remote host by constructing a malicious web page
and enticing a victim to visit it.
Note that this control may have been included with Visual Studio or
FoxPro or as part of a third-party application created by one of those
See also :
Microsoft has released a set of patches for Microsoft Office /
Frontpage / FoxPro / Studio.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true
Family: Windows : Microsoft Bulletins
Nessus Plugin ID: 35069 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now