OSVDB ID: 25336

Title: Microsoft Windows Distributed Transaction Coordinator (DTC) BuildContextW Request DoS

Info

Disclosure

May 09, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

May 09, 2006

Description

Microsoft Windows contains a flaw that may allow a remote denial of service. The issue is triggered when the Distributed Transaction Coordinator receives a single BuildContextW request where the 'UuidString' or 'GuidIn' value has a maximum character count of 0x7D0, and will result in loss of availability for the service.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Solution: Patch / RCS
Exploit: Exploit Rumored
Disclosure: OSVDB Verified, Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, the vendor has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	XP SP2
		2003 Server
		XP SP1
		2000 SP4
		NT 4.0

References

Security Tracker: 1016047
Bugtraq ID: 17905
Secunia Advisory ID: 20000
CVE ID: 2006-1184 (see also: NVD)
Related OSVDB ID: 25335
Microsoft Knowledge Base Article: 913580
VUPEN Advisory: ADV-2006-1742
Keyword: EEYEB20051011B
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0237.html
Other Advisory URL: http://research.eeye.com/html/advisories/published/AD20060509b.html
http://www.eeye.com/html/research/advisories/AD20060509b.html [ Link is 404 ]
Microsoft Security Bulletin: MS06-018

Credit

Derek Soeder - dsoedereeye.com - eEye Digital Security

Direct URL: http://osvdb.org/25336

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit