Oval Definition:oval:org.mitre.oval:def:1053
Revision Date:2011-10-24Version:51
Title:Windows XP (32-Bit) DUNZIP Integer Overflow
Description:Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0575
Platform(s):Microsoft Windows XP
Product(s):Compressed Folders
Definition Synopsis
  • Software section
  • Windows XP is installed
  • AND 32-Bit version of Windows is installed
  • AND NOT Win2K/XP/2003 service pack 2 (or later) is installed
  • AND vulnerable 32-bit version of zipfldr.dll
  • no service pack and vulnerable 32-bit version of zipfldr.dll
  • NOT Win2K/XP/2003 is patched
  • AND the 32-bit version of zipfldr.dll is less than 6.0.2750.167
  • OR service pack 1 and vulnerable 32-bit version of zipfldr.dll
  • Win2K/XP/2003/Vista service pack 1 is installed
  • AND the 32-bit version of zipfldr.dll is less than 6.0.2800.1584
  • AND NOT the patch q873376 is installed (Hotfix key)
  • AND Configuration section
  • Compressed Folders with zipfldr.dll are enabled
    • BACK