25336 : Microsoft Windows Distributed Transaction Coordinator (DTC) BuildContextW Request DoS
Printer | http://osvdb.org/25336 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
7	563	over 5 years ago	about 1 year ago	5 times	100%

Timeline

Vendor Informed Date	Disclosure Date	Vendor Solution Date
2005-10-11	2006-05-09	2006-05-09

Time to Patch
210 days

Keywords

EEYEB20051011B

Description

Microsoft Windows contains a flaw that may allow a remote denial of service. The issue is triggered when the Distributed Transaction Coordinator receives a single BuildContextW request where the 'UuidString' or 'GuidIn' value has a maximum character count of 0x7D0, and will result in loss of availability for the service.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Solution: Patch / RCS
Exploit: Exploit Rumored
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, the vendor has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	XP SP2
		2003 Server
		XP SP1
		2000 SP4
		NT 4.0

References

Security Tracker: 1016047
Bugtraq ID: 17905
Secunia Advisory ID: 20000
CVE ID: 2006-1184 (see also: NVD)
Related OSVDB ID: 25335
Microsoft Knowledge Base Article: 913580
VUPEN Advisory: ADV-2006-1742
Keyword: EEYEB20051011B
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0237.html
Other Advisory URL: http://research.eeye.com/html/advisories/published/AD20060509b.html
http://www.eeye.com/html/research/advisories/AD20060509b.html [ Link is 404 ]
Microsoft Security Bulletin: MS06-018

Tools & Filters

	21331 21334
Snort	6419 6420 6421 6422 6423 6424 6425 6426 6427 6428 6429 6430 6431 6432 6433 6434 6435 6436 6437 6438 6439 6440 6441 6442

Credit

Derek Soeder - eEye Digital Security

CVSSv2 Score

CVSSv2 Base Score = 5.0
Source: nvd.nist.gov | Generated: 2006-05-10 | Disagree?

Blogs

This product uses the Daylife API but is not endorsed or certified by Daylife.

This section lists the latest news and blogs found via the daylife API (and for older items, the technorati API), which mention or otherwise discuss this vulnerability.

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.