CVE-2005-2119
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.947 High
EPSS
Percentile
99.2%
The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows attackers to overwrite arbitrary memory locations using an incorrect size value that is provided to the NdrAllocate function, which writes management data to memory outside of the allocated buffer.
References
secunia.com/advisories/17161
secunia.com/advisories/17172
secunia.com/advisories/17223
secunia.com/advisories/17509
securityreason.com/securityalert/73
securitytracker.com/id?1015037
support.avaya.com/elmodocs2/security/ASA-2005-214.pdf
www.eeye.com/html/research/advisories/AD20051011b.html
www.kb.cert.org/vuls/id/180868
www.osvdb.org/18828
www.securityfocus.com/bid/15056
www.us-cert.gov/cas/techalerts/TA05-284A.html
docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-051
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1071
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1452
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A551
Related
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.947 High
EPSS
Percentile
99.2%