MS02-054: Unchecked Buffer in File Decompression Functions Could Lead to Code Execution (329048)
High Nessus Plugin ID 11148
SynopsisArbitrary code can be executed on the remote host through Explorer.
DescriptionThe remote host contains a version of Windows that has a security flaw in the compressed files (ZIP) implementation. An attacker can exploit this flaw by sending a malicious zip file to the remote user. When the user opens the file with Explorer, arbitrary code will be executed.
SolutionMicrosoft has released a set of patches for Windows NT, 2000 and XP.