CVE-2006-1184

Currently unrated

Key Information:

Vendor: Microsoft
Status: Distributed Transaction Coordinator
Vendor: CVE Published:; 10 May 2006

Summary

Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which causes an out-of-range memory access, aka the MSDTC Denial of Service Vulnerability. NOTE: this is a variant of CVE-2005-2119.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.eeye.com/html/research/advisories/AD20060509b....

x_refsource_MISC

http://www.osvdb.org/25336

vdb-entryx_refsource_OSVDB

EPSS Score

15% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 10, 2006
Vulnerability Reserved
Mar 13, 2006

Collectors

NVD DatabaseMitre Database