Windows Me Exposed Passwords in Compressed Files Vulnerability Patch

By Microsoft Free

Developer's Description

Windows Me contains a data-compression feature called Compressed Folders. For interoperability with leading third-party compression tools, it provides a password-protection option for folders that have been compressed. However, due to a flaw in the package's implementation, the passwords used to protect the folders are recorded in a file on the user's system. If an attacker gained access to an affected machine on which password-protected folders were stored, she could learn the passwords and access the files.

The patch will prevent passwords from being written to the user's system in the future. However, as discussed in the FAQ, after applying the patch, it is important to also delete c:windowsdynazip.log to ensure that all previously-recorded passwords are deleted.

Full Specifications

What's new in version MS01-019 (3/28/01)


Release December 5, 2008
Date Added April 19, 2001
Version MS01-019 (3/28/01)

Operating Systems

Operating Systems Windows, Windows Me
Additional Requirements Windows Me


Total Downloads 20,811
Downloads Last Week 0
Report Software

Related Software

Vpn One Click

Free to try
Vpn One Click

Protected Folder

Free to try
Protected Folder

Random Password Generator

Random Password Generator



User Reviews

10 User Votes
5 Star
4 Star
3 Star
2 Star
1 Star

Get the best price on everything

Shop your favorite products and we’ll find the best deal with a single click. Designed to make shopping easier.