This patch addresses two vulnerabilities. An unchecked buffer exists in the program that handles the decompressing of files from a zipped file. When this program tries to open a file that has a specially malformed file name that is contained in a zipped file, Windows Explorer may fail, or an attacker may be able to run any code. This behavior creates a security vulnerability.
The second vulnerability is that the decompression function may put a file in a folder that is different from, or that is a child of, the target folder that is specified by the user as the location where the decompressed ZIP files are put. This behavior may allow an attacker to put a file in a known location on the user's computer; for example, an attacker may put a program in a Startup folder.
Like it? Share with your friends!
Other Windows Software of Developer «Microsoft»:
Windows CE Platform Builder 2.12 Core OS QFE 18 Fixes made in this QFE:Components: PPPIssues resolved: Implement more robust option parsing code. This version is the first release on CNET Download.com.What is new in this release:This version is the first release on CNET Download.com.Requirements:Windows
Office 2000 SP3 for Office 2000 SR1 MultiLanguage Pack The Office 2000 Service Pack 3 (SP3) for the Office 2000 Service Release 1 (SR1) MultiLanguage Pack update ensures that Microsoft Office 2000 SP3 performs with complete functionality when used with a Office 2000 SR1 MultiLanguage Pack. This update is only
2007 Microsoft Office Add-in: Microsoft Save as XPS 2007 Microsoft Office Add-in: Microsoft Save as XPS allows you to export and save to the XPS format in eight 2007 Microsoft Office programs. It also allows you to send files as e-mail attachments in the XPS format in a subset of these programs. Specific fe
Visual Studio Team System 2008 Team Explorer Microsoft Visual Studio Team System 2008 Team Explorer can be used as a standalone rich client for accessing Visual Studio Team System 2008 Team Foundation Server. It enables users to join the software development life cycle with integrated support for sou
Access 2000 Runtime Security Patch: KB827431 The Access 2000 Runtime Security Patch: KB827431 offers the highest levels of stability and security available for Microsoft Access 2000 Runtime. This update addresses a flaw in the Microsoft Access Snapshot Viewer that could allow arbitrary code to run wh
System Center 2012 R2 Configuration Manager With System Center 2012 R2 Configuration Manager, you can manage PCs and servers, keeping software up-to-date, setting configuration and security policies, and monitoring system status while giving your employees access to corporate applications on the dev
ODBC .NET Data Provider The ODBC .NET Data Provider is an add-on component to the .NET Framework. It provides access to native ODBC drivers the same way the OLE DB .NET Data Provider provides access to native OLE DB providers. The ODBC .NET Data Provider is intended to work with
Microsoft Expression Web Quickstart Guide Get creative in Expression Web now. Download this hands-on lab-including a step-by-step guide, video tutorial and full assets and start building a standards-based Web site immediately. This version is the first release on CNET Download.com.What is new in t
Microsoft Standalone System Sweeper beta (64-bit) Microsoft System Sweeper is a recovery tool that can help you start an infected PC and perform an offline scan to help identify and remove rootkits and other advanced malware. Microsoft Standalone System Sweeper Beta is not a replacement for a full antivir
WEnc- Windows Encryption The quick, easy, and secure way to encrypt all your files and folders. Keep all your files safe with Wenc. WEnc is embedded right into Window Explorer and Windows 'My Computer'. Just right click on a file or folder and select WEnc's 'Encrypt' or 'Decrypt'
Remora USB Disk Guard Remora: warm water fishes of the family Echeneidae, characterized by an oval sucking disk on the top of the head. With this apparatus the remora, or suckerfish, attaches itself to sharks, swordfishes, drums, marlins, and sea turtles. In this way it travels
ZERO Binary NET Required framework v.2 Protect your privacy. Delete files with zero binary. Function Look clean and fresh (look with hex view tool) can create zero binary file for cleaning drive hard disk. Files deleted cannot be recovered again. Tested with digital photo
Password Recovery Bundle Password Recovery Bundle is a handy toolkit to recover all your lost or forgotten passwords in an easy way. Recover logins and passwords for MSN Messenger, MSN Explorer, Windows Messenger, Windows Live Messenger, AOL Instant Messenger, AIM Pro, Google Talk
HTML Block This software package gives you high in encryption and security levels for both the business and home user. Hide your source code by, encrypting HTML, PHP, ASP, XHTML, JSP, SHTML files. Protect your images and graphics on your site by adding anti-copy to y
Jarvas Cryptography Suite Jarvas Data Security has developed the Jarvas Cryptography Suite as an easy-to-use encryption program that uses 256-bit and up to 8192-bit symmetric key encryption and vernam OTP security to password protect your private files and prevent them from being m
Easy Signature Easy signature is a free tool that allows electronic signing (e-signature) any type of file. It is an initiative to make the world greener and make everyday document management easier. It is an excellent tool for intra security document management and digi
pfEncryptor Provides interactive User Interface for defining and managing encryption tasks. Supports AES, TripleDES, and DES encryption standards. Can encrypt either files or standalone strings. Encryptions can either be to binary or base64 Text encoding. Keys can be
HTML-Protector 2005 Protect your site from thieves. Hide your PayPal links. Encrypt e-mail links and stop spam. Lock pages in your site. Automatically break your pages out of frames. Password protect any page.
The brand new HTML-Protector 2004 software will completely sec
DFolder XP File(s) / Folder(s) security suite, DFolder XP, a solution for Home / Office users who want to keep their confidential document(s) hidden from others, features include Smart Encryption and Password Protection. Hides 5 file(s) / folder(s) at a time.Requirem
Supported Operating Systems:
Windows XP |
Comments on Windows XP Unchecked Buffer in File Decompression Functions Vulnerability Patch:
Comments not found
Windows Software - Free Windows Downloads, Apps, Games, Freeware, Skype, Media Player, Antivirus, Gimp, Live, Starter for Windows XP, Vista, 7, 8, 10