Lucene search
SAINT CorporationSAINT:973A3C32B5FCBD78569984D11D83BB73HistoryMay 15, 2006 - 12:00 a.m.
Windows compressed folders buffer overflow
2006-05-1500:00:00
SAINT Corporation
download.saintcorporation.com
6
0.847 High
EPSS
Percentile
98.5%
Added: 05/15/2006
CVE: CVE-2004-0575
BID: 11382
OSVDB: 10695
Background
Microsoft Windows XP and Windows Server 2003 include the ability to natively handle ZIP files.
Problem
A buffer overflow when handling compressed folders allows command execution when a specially crafted ZIP file is opened by the operating system.
Resolution
http://www.microsoft.com/technet/security/bulletin/MS04-034.mspx
References
<http://www.kb.cert.org/vuls/id/649374>
<http://www.securityfocus.com/archive/1/378309>
Limitations
Successful exploitation requires a user to save the exploit file, open it, and either copy a file into the compressed folder or delete the **deletme.txt** file from the compressed folder.
Platforms
Windows XP
Related
saint
saint
Windows compressed folders buffer overflow
2006-05-15 00:00:00
Windows compressed folders buffer overflow
2006-05-15 00:00:00
Windows compressed folders buffer overflow
2006-05-15 00:00:00
cvelist
cvelist
CVE-2004-0575
2004-10-16 04:00:00
CVE-2004-1094
2004-12-01 05:00:00
cve
cve
CVE-2004-0575
2004-11-03 05:00:00
CVE-2004-1094
2005-01-10 05:00:00
nessus
nessus
MS04-034: Vulnerability in zipped folders may allow code execution (873376)
2004-10-12 00:00:00
cert
cert
Microsoft Windows processing of zip files contains a buffer overflow
2004-10-13 00:00:00
securityvulns
securityvulns
checkpoint_advisories
checkpoint_advisories