cve/2004/CVE-2004-0575.md

CVE-2004-0575

Description

Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.

POC

Reference

• https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-034

Github

No PoCs found on GitHub currently.