ID CVE-2004-0575
Summary Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2003_server:64-bit:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 12-10-2018 - 21:34)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
oval via4
  • accepted 2011-10-24T04:00:04.404-04:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Matthew Wojcik
      organization The MITRE Corporation
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    description Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
    family windows
    id oval:org.mitre.oval:def:1053
    status accepted
    submitted 2004-10-14T12:00:00.000-04:00
    title Windows XP (32-Bit) DUNZIP Integer Overflow
    version 73
  • accepted 2011-10-24T04:00:08.561-04:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Matthew Wojcik
      organization The MITRE Corporation
    • name Shane Shaffer
      organization G2, Inc.
    description Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
    family windows
    id oval:org.mitre.oval:def:3913
    status accepted
    submitted 2004-10-14T12:00:00.000-04:00
    title Windows Server 2003 (32-Bit) DUNZIP Integer Overflow
    version 67
  • accepted 2011-10-24T04:00:09.580-04:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Matthew Wojcik
      organization The MITRE Corporation
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    description Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
    family windows
    id oval:org.mitre.oval:def:4276
    status accepted
    submitted 2004-10-14T12:00:00.000-04:00
    title Windows Server 2003 (64-Bit) DUNZIP Integer Overflow
    version 42
  • accepted 2011-10-24T04:00:25.999-04:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Matthew Wojcik
      organization The MITRE Corporation
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    description Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
    family windows
    id oval:org.mitre.oval:def:6397
    status accepted
    submitted 2004-10-14T12:00:00.000-04:00
    title Windows XP (64-Bit) DUNZIP Integer Overflow
    version 47
refmap via4
bugtraq 20041013 EEYE: Windows Shell ZIP File Decompression DUNZIP32.DLL Buffer Overflow Vulnerability
cert-vn VU#649374
ciac P-010
misc http://www.eeye.com/html/research/advisories/AD20041012A.html
ms MS04-034
sectrack 1011637
xf
  • win-compressed-folders-bo(17624)
  • win-ms04034-patch(17659)
saint via4
bid 11382
description Windows compressed folders buffer overflow
id win_patch_zipfolder
osvdb 10695
title windows_compressed_folders
type client
Last major update 12-10-2018 - 21:34
Published 03-11-2004 - 05:00
Back to Top