This patch addresses two vulnerabilities. An unchecked buffer exists in the program that handles the decompressing of files from a zipped file. When this program tries to open a file that has a specially malformed file name that is contained in a zipped file, Windows Explorer may fail, or an attacker may be able to run any code. This behavior creates a security vulnerability.
The second vulnerability is that the decompression function may put a file in a folder that is different from, or that is a child of, the target folder that is specified by the user as the location where the decompressed ZIP files are put. This behavior may allow an attacker to put a file in a known location on the user's computer; for example, an attacker may put a program in a Startup folder.
Like it? Share with your friends!
Other Windows Software of Developer «Microsoft»:
Microsoft Office Professional Plus 2013 Microsoft Office Professional Plus 2013 is the future of productivity. Office Professional Plus 2013 includes Word, PowerPoint, Excel, Outlook, OneNote, Access, Publisher, and Lync. Features include productivity with modern and touch-enabled experiences, q
Visual Studio Team System 2008 Team Explorer Microsoft Visual Studio Team System 2008 Team Explorer can be used as a standalone rich client for accessing Visual Studio Team System 2008 Team Foundation Server. It enables users to join the software development life cycle with integrated support for sou
Close Combat II: A Bridge Too Far Close Combat II: A Bridge Too Far is the highly anticipated sequel to Microsoft's 1996 game, Close Combat. In this latest installment, you're in the middle of a nasty squabble for control of five strategic bridges, in a scenario that is based on an actual
Microsoft Lync Server 2010 SDK Microsoft Lync Server 2010 SDK includes library, tools, documentation, and sample applications for developing server-side SIP applications to customize and extend the functionality of Microsoft Lync Server 2010. The server applications can be written using
Zune Zune Marketplace is the entertainment superstore that never closes. Browse music, movies, videos, and podcasts whenever you like, with brand-new releases every week. Download Zune 4.0 software to get started and get a Zune Pass music subscription to start
Microsoft Lync 2010 (64-Bit) Microsoft Lync 2010 (64-Bit) provides a single interface that unites voice communications, IM, and audio, video, and Web conferencing into a richer, more contextual offering. It contacts enhancements that make it easier to find people and keep track of you
ASP.NET HOW DO I Video Series: Caching (Part 2) This MSI contains code that supports the video which is part two of a two-part series introducing the new caching features of ASP.NET 2.0. Topics include the new Partial-Page Output Caching feature of ASP.NET 2.0 followed by an overview of the Cache API, w
ReportViewer Samples for Visual Studio Visual Studio 2005 includes new ReportViewer controls that you can use to add rich data reporting to Windows forms and ASP.NET applications. ReportViewer Samples for Visual Studio provides two complete samples so that you can view the control and sample re
Update for Outlook Junk Email Filter 2003 (KB921587) This update provides the Junk E-mail Filter in Microsoft Office Outlook 2003 with a more current definition of which e-mail messages should be considered junk e-mail. This update was released in November 2006. This version is the first release on CNET Down
Processing Large Files with BizTalk Server 2002 Some solutions that you build by using Microsoft BizTalk Server 2002 may require you to ensure that files over 20 MB can be processed. This paper and its accompanying sample provide an example of how you can process large files with BizTalk Server. In thi
AEVITA Wipe and Delete AEVITA Wipe and Delete is a reliable and ultra-fast shredder that will help you securely erase any file or folder without any chances for its recovery. Designed for the Windows platforms, the application seamlessly integrates into Windows Explorer and can
Computer Guard Computer Guard is your solution for parental control software. It lets you manage children's Internet access and helps protect against harmful content online as well as limit or block them from programs on your PC such as computer games or your personal pr
Aes Spartan (Spanish) Aes Spartan Encryption keeps SMS, mails, messages from social networks, notes and any other text safe from thieves, hackers and snoopers.
Simply paste text copied from any application, or save it in a file, use it more laterRequirements:NET Framework 4.
KeyEcho KeyEcho allows you to monitor keystrokes on your computer and on all your LAN machines. KeyEcho main features are: all-in-one concept--only one file (keyecho.exe) is required; doesn't require installation and can be run from a floppy, network drive, or fro
WipeClean Ensure that any sensitive data is securely wiped from your hard drive and can never be recovered. WipeClean allows you to securely wipe individual files, full folders or file patterns from within selected folders. WipeClean also integrates itself with the
Accent Office Password Recovery An amazing solution to the problem of lost Microsoft Office / OpenOffice passwords. The program works with all versions of Mirosoft Office (95-2016) and OpenOffice. It knows most types of protection for these documents. It uses AMD and NVIDIA video cards t
Crypditor Crypditor is a text editor to save data with a high-secure encryption algorithm (AES). No other software needed: application and documents are in one, because the mechanism to encrypt and decrypt the text files is part of it. Simple but secure: Write your
Folder Secure Folder secure is a user-friendly program for password-protecting files and folders. It prevents unauthorized access to users' important information and programs. The software makes the protected folders completely invisible, inaccessible or accessible in t
APP/Encrypt APP/Encrypt is a COM+/MTS component that allows application developers to strong encrypting and decrypting of text and files. Supports the latest industry-standard strong encryption and hashing algorithms including: Blowfish, Cast 128, Cast 256, Rijndael,
Alligator Data Guard Alligator Data Guard is a tool for protecting your confidential information, using AES algorithm with 256-bit key and Haval 256-bit Hash Message Authentication Code (HMAC) to simultaneously verify the data integrity and the authenticity for better security
Supported Operating Systems:
Windows XP |
Comments on Windows XP Unchecked Buffer in File Decompression Functions Vulnerability Patch:
Comments not found
Windows Software - Free Windows Downloads, Apps, Games, Freeware, Skype, Media Player, Antivirus, Gimp, Live, Starter for Windows XP, Vista, 7, 8, 10