CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.5%
Added: 05/15/2006
CVE: CVE-2004-0575
BID: 11382
OSVDB: 10695
Microsoft Windows XP and Windows Server 2003 include the ability to natively handle ZIP files.
A buffer overflow when handling compressed folders allows command execution when a specially crafted ZIP file is opened by the operating system.
http://www.microsoft.com/technet/security/bulletin/MS04-034.mspx
<http://www.kb.cert.org/vuls/id/649374>
<http://www.securityfocus.com/archive/1/378309>
Successful exploitation requires a user to save the exploit file, open it, and either copy a file into the compressed folder or delete the **deletme.txt**
file from the compressed folder.
Windows XP