Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an unchecked buffer and improper length validation.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Windows_2003_server | Microsoft | 64-bit (including) | 64-bit (including) |
Windows_2003_server | Microsoft | r2 (including) | r2 (including) |
Windows_xp | Microsoft | * | * |