← CVECheck
HomeVulnerabilities

CVE-2002-1139 — MEDIUM severity vulnerability (The Compressed Folders feature in Microsoft Windows 98 with)

The Compressed Folders feature in Microsoft Windows 98 with Plus! Pack, Windows Me, and Windows XP does not properly check the destination folder during the decompression of ZIP files, which allows attackers to place an executable file in a known location on a user's system, aka "Incorrect Target Path for Zipped File D

CVE IDCVE-2002-1139
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2002-10-11
Last modified2026-04-16
DescriptionThe Compressed Folders feature in Microsoft Windows 98 with Plus! Pack, Windows Me, and Windows XP does not properly check the destination folder during the decompression of ZIP files, which allows attackers to place an executable file in a known location on a user's system, aka "Incorrect Target Path for Zipped File Decompression."
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →