CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1139

The Compressed Folders feature in Microsoft Windows 98 with Plus! Pack, Windows Me, and Windows XP does not properly check the destination folder during the decompression of ZIP files, which allows attackers to place an executable file in a known location on a user's system, aka "Incorrect Target Path for Zipped File Decompression."

Exploit prediction scoring system (EPSS) score

EPSS Score 0.197

EPSS Ranking 95.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.iss.net/security_center/static/10252.php
http://www.securityfocus.com/bid/5876
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-054
http://www.iss.net/security_center/static/10252.php
http://www.securityfocus.com/bid/5876
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-054

Products affected by CVE-2002-1139

Microsoft » Windows 98 Plus Pack » Version: N/A

cpe:2.3:a:microsoft:windows_98_plus_pack:-
Microsoft » Windows Me » Version: N/A

cpe:2.3:o:microsoft:windows_me:-
Microsoft » Windows Xp » Version: N/A

cpe:2.3:o:microsoft:windows_xp:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1139

Products

Pricing

Contact Us