This patch addresses two vulnerabilities. An unchecked buffer exists in the program that handles the decompressing of files from a zipped file. When this program tries to open a file that has a specially malformed file name that is contained in a zipped file, Windows Explorer may fail, or an attacker may be able to run any code. This behavior creates a security vulnerability.
The second vulnerability is that the decompression function may put a file in a folder that is different from, or that is a child of, the target folder that is specified by the user as the location where the decompressed ZIP files are put. This behavior may allow an attacker to put a file in a known location on the user's computer; for example, an attacker may put a program in a Startup folder.
Like it? Share with your friends!
Other Windows Software of Developer «Microsoft»:
Microsoft Xbox 360 Firmware for USB Fixes: - Larger external USB hard drives – Plug in any external USB hard drive up to 2 TB - Purchase history - Password reset - Network statistics - Microsoft account balance now appears in the top-right corner of the Xbox Dashboard. If you cannot co
Microsoft Exchange 2000 Server Post SP1 Microsoft has released a package to correct the problems: Performance Degradation When Heap Is Fragmented Error SC_E_LOGON_DENIED After a Reset of Local Machine Account Password The fixes in this package are also included in Windows 2000 Service Pack 2
Links LS MS-DOS (1997) Version 1.20 to 1.30 Update The Links LS MS-DOS (1997 Edition) version 1.20 to 1.30 update (120to130.exe) upgrades your copy of Links LS MS-DOS version 1.20 to Links LS MS-DOS version 1.30. This version is the first release on CNET Download.com.What is new in this release:This versio
Using Schema and Serialization to Leverage Business Logic Using Schema and Serialization to Leverage Business Logic. A companion piece to the Extreme XML article, Using Schema and Serialization to Leverage Business Logic. This version is the first release on CNET Download.com.What is new in this release:This vers
Windows NT Authentication Vulnerability Patch This update resolves the ""Authentication Flaw in Windows Debugger Can Lead to Elevated Privileges"" security vulnerability in Windows NT 4.0. This vulnerability is the result of a flaw in the authentication mechanism for the Windows debugging facility tha
Microsoft Visual C++ 2010 SP1 Redistributable Package (x86) The Microsoft Visual C++ 2010 SP1 Redistributable Package (x86) installs runtime components of Visual C++ Libraries required to run applications developed with Visual C++ 2010 SP1 on a computer that does not have Visual C++ 2010 SP1 installed.This package
Excel 2000 Update: June 19, 2002 The Excel 2000 Update: June 19, 2002 provides you with the latest security and performance improvements available for Microsoft Excel 2000. This update prevents Excel from potentially running macros without warning. This update is part of Microsoft's conti
Publisher 2003/2002 Add-in: WordArt Compatibility This add-in allows you to open Publisher 2000 files in a more recent version of Microsoft Publisher without updating the WordArt that is contained in the publication. This gives you the control to disable the automatic WordArt conversion from the legacy Wo
FrontPage Web Template- Real Estate Customize your FrontPage-based Web site. The site comes complete with a home page, links, and pages ready for you to add your own content into. FrontPage Web site templates can be used to create an entire Web site from scratch. These custom sites have been
All-In-One Spy This program facilitates the monitoring and recording of all actions that are performed on a computer. It records all keystokes, remembers addresses of Internet pages, and maintains log files for applications that have been run. It can create screenshots w
WirelessKeyView WirelessKeyView recovers all wireless network security keys/passwords (WEP/WPA) stored in your computer by the 'Wireless Zero Configuration' service of Windows XP and by the 'WLAN AutoConfig' service of Windows Vista. It allows you to easily save all keys
HydraCrypt HydraCrypt allows to Encrypt/Decrypt standard Ascii256 by randomly converting it to a string of numbers. The string of numbers is created using a specified password. This password can be any length the users desires. HydraCrypt also allows Encryption/Decry
Sunbowsoft Secure Storage(3S) Sunbowsoft Secure Storage (3S) is powerful, reliable and easy to use disk encryption software, which transparently encrypts disk partitions, devices (USB memory sticks) or creates encrypted virtual disk as files.3S allows you to protect sensitive data and
Jihosoft Eraser Have some sensitive information on your computer and worry about the data leakage one day? Now with Jihosoft Eraser, you can permanently remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns. Key Featur
Folder Lock Pro Folder Lock Pro is a professional security tool to lock, hide and protect your folders and files. With very easy to use interface, just a few click, you can lock your folder and keep it safe, no one can open it without a password. This tool also provide pr
SQL Encrypt SQL Encrypt is an application to encrypt or decrypt string data easily (cell-level encryption) by using SQL Server extended stored procedure. It supports AES (Advanced Encryption Standard), SHA1 (Secure Hash Algorithm - 1), and MD5 (Message Digest 5) encry
Folder Defence Free FolderDefence Free--new, free and extremely easy software to hide, lock and password protect your private files and folders from other users, programs or malicious application. FolderDefence enables you to password protect all the private or sensitive info
Encrypt\Decrypt File Utility This is a simple program to encrypt and decrypt a file. It uses a password that you specify to decrypt or encrypt a file. It supports any file type and any size file. It offers a simple layer of protection against someone reading your files or running your
Protect a PDF As the name suggests, this encryption programs lock and protect important PDF documents.
Nowadays, PDF documents widely used by numerous people both in professional and private environments. That's because of many reasons, like they are small in size,
Supported Operating Systems:
Windows XP |
Comments on Windows XP Unchecked Buffer in File Decompression Functions Vulnerability Patch:
Comments not found
Windows Software - Free Windows Downloads, Apps, Games, Freeware, Skype, Media Player, Antivirus, Gimp, Live, Starter for Windows XP, Vista, 7, 8, 10