CVE-2006-0034

EPSS 52.74%
Published 10.05.2006 02:14:00
Last modified 03.04.2025 01:03:51
Source secure@microsoft.com
Teams watchlist Login
Open Login

Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or BuildContext opcode, which triggers a bug in the NdrAllocate function, aka the MSDTC Invalid Memory Access Vulnerability.

Affected products Warnungen 0 Metrics 2 CWE 1 References 19

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Distributed Transaction Coordinator

Microsoft ≫ Windows 2000

Microsoft ≫ Windows 2000 Updatesp1

Microsoft ≫ Windows 2000 Updatesp2

Microsoft ≫ Windows 2000 Updatesp3

Microsoft ≫ Windows 2000 Updatesp4

Microsoft ≫ Windows 2003 Server Versionenterprise Edition64-bit

Microsoft ≫ Windows 2003 Server Versionenterprise_64-bit

Microsoft ≫ Windows 2003 Server Versionr2 Edition64-bit

Microsoft ≫ Windows 2003 Server Versionr2 Editiondatacenter_64-bit

Microsoft ≫ Windows 2003 Server Versionstandard Edition64-bit

Microsoft ≫ Windows 2003 Server Versionweb

Microsoft ≫ Windows Nt Version4.0

Microsoft ≫ Windows Nt Version4.0 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Editionserver

Microsoft ≫ Windows Nt Version4.0 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp1

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp2

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp3

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp4

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp5

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp6

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp6a

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionworkstation

Microsoft ≫ Windows Xp Edition64-bit

Microsoft ≫ Windows Xp Editionembedded

Microsoft ≫ Windows Xp Editionhome

Microsoft ≫ Windows Xp Editionmedia_center

Microsoft ≫ Windows Xp Updategold Editionprofessional

Microsoft ≫ Windows Xp Updatesp1 Edition64-bit

Microsoft ≫ Windows Xp Updatesp1 Editionembedded

Microsoft ≫ Windows Xp Updatesp1 Editionhome

Microsoft ≫ Windows Xp Updatesp1 Editionmedia_center

Microsoft ≫ Windows Xp Updatesp2 Editiontablet_pc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	52.74%	0.979

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0238.html

http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0269.html

http://secunia.com/advisories/20000

Patch

Vendor Advisory

http://securityreason.com/securityalert/863

http://securitytracker.com/id?1016047

http://www.eeye.com/html/research/advisories/AD20060509a.html

Patch

Vendor Advisory

http://www.osvdb.org/25335

http://www.securityfocus.com/archive/1/433430/100/0/threaded