Описание
Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-0575
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-034
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17624
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17659
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1053
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3913
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4276
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6397
- http://marc.info/?l=ntbugtraq&m=109767342326300&w=2
- http://securitytracker.com/id?1011637
- http://www.ciac.org/ciac/bulletins/p-010.shtml
- http://www.eeye.com/html/research/advisories/AD20041012A.html
- http://www.kb.cert.org/vuls/id/649374
EPSS
CVE ID
Связанные уязвимости
Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
EPSS