Back to search
CVE-2002-1139
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
The Compressed Folders feature in Microsoft Windows 98 with Plus! Pack, Windows Me, and Windows XP does not properly check the destination folder during the decompression of ZIP files, which allows attackers to place an executable file in a known location on a user's system, aka "Incorrect Target Path for Zipped File Decompression."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MS02-054
vendor-advisory
x_refsource_MS
5876
vdb-entry
x_refsource_BID
win-zip-incorrect-path(10252)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now