Denial of Service Vulnerability in Microsoft Distributed Transaction Service for Windows 2000 and IIS 5.0
CVE-2002-0224

Currently unrated

Key Information:

Vendor: Microsoft
Status: Sql Server; Internet Information Services
Vendor: CVE Published:; 16 May 2002

Summary

The Microsoft Distributed Transaction Service Coordinator, utilized in Windows 2000, IIS 5.0, and SQL Server versions 6.5 through 2000, presents a vulnerability that allows remote attackers to exploit malformed or random input. This exploit can lead to a denial of service, causing the affected services to crash or become unresponsive, thereby compromising the integrity and availability of the system.

References

http://online.securityfocus.com/archive/1/268593

mailing-listx_refsource_BUGTRAQ

http://www.iss.net/security_center/static/8046.php

vdb-entryx_refsource_XF

http://online.securityfocus.com/archive/1/253360

mailing-listx_refsource_BUGTRAQ

EPSS Score

58% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 16, 2002
Vulnerability Reserved
May 1, 2002