Vulnerability in N/a
CVE-2004-0575
Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involv…
EPSS: 0.724 (98.8th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 1011637 (vdb-entry, x_refsource_SECTRACK)
- oval:org.mitre.oval:def:3913 (signature, x_refsource_OVAL, vdb-entry)
- 20041013 EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability (mailing-list, x_refsource_BUGTRAQ)
- MS04-034 (x_refsource_MS, vendor-advisory)
- P-010 (government-resource, third-party-advisory, x_refsource_CIAC)
- www.eeye.com/html/research/advisories/AD20041012A.html (x_refsource_MISC)
- oval:org.mitre.oval:def:4276 (signature, x_refsource_OVAL, vdb-entry)
- oval:org.mitre.oval:def:1053 (signature, x_refsource_OVAL, vdb-entry)
- VU#649374 (x_refsource_CERT-VN, third-party-advisory)
- win-compressed-folders-bo(17624) (vdb-entry, x_refsource_XF)