13 matches found
Researchers Shed Light on CatB Ransomware's Evasion Techniques
The threat actors behind the CatB ransomware operation have been observed using a technique called DLL search order hijacking to evade detection and launch the payload. CatB, also referred to as CatB99 and Baxtoy, emerged late last year and is said to be an "evolution or direct rebrand" of anothe...
Privilege Escalation
kernel is vulnerable to privilege escalation. A flaw was found in the dnsresolver upcall used by CIFS. A local, unprivileged user could redirect a Microsoft Distributed File System link to another IP address, tricking the client into mounting the share from a server of the user's choosing...
Vulnerabilities in Windows Could Allow Elevation of Privilege (959454)
This host is missing a critical security update according to Microsoft Bulletin MS09-012. OpenVAS Vulnerability Test $Id: secpodms09-012.nasl 5934 2017-04-11 12:28:28Z antu123 $ Vulnerabilities in Windows Could Allow Elevation of Privilege 959454 Authors: Chandan S Updated By: Madhuri D on...
Microsoft Distributed Transaction Coordinator DoS
Two different buffer overflows causing service to crash...
CVE-2006-0034
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator MSDTC for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or...
CVE-2006-1184
Microsoft Distributed Transaction Coordinator MSDTC for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service crash via a BuildContextW request with a large 1 UuidString or 2 GuidIn of a certain length, which causes an out-of-range memory...
MS06-018: Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow DoS (913580) (uncredentialed check)
The remote version of Windows contains a version of MSDTC Microsoft Data Transaction Coordinator service that is affected by several remote code execution and denial of service vulnerabilities. An attacker may exploit these flaws to obtain complete control of the remote host 2000, NT4 or to crash...
CVE-2006-0034
CVE-2006-0034 describes a heap-based buffer overflow in MSDTC’s RPC path (msdtcprx.dll BuildContextW/BuildContext) caused by an overly long fifth argument, triggering a bug in NdrAllocate. Affected products include Windows 2000/NT4-era MSDTC deployments, with the issue leading to denial of servic...
CVE-2002-0224
The MSDTC Microsoft Distributed Transaction Service Coordinator for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL Server 6.5 through SQL 2000 0.0 allows remote attackers to cause a denial of service crash or hang via malformed random input...
KPMG-2002015: Microsoft Distributed Transaction Coordinator DoS
-------------------------------------------------------------------- Title: Microsoft Distributed Transaction Coordinator DoS BUG-ID: 2002015 Released: 19th Apr 2002 -------------------------------------------------------------------- Problem: ======== A flaw in the way MSDTC handles malformed...
Security Update for Windows Server 2003 (KB913580)
A security issue has been identified in Windows-based systems that could cause the Microsoft Distributed Transaction Coordinator MSDTC to stop responding. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your compute...
Security Update for Windows XP (KB913580)
A security issue has been identified in Windows-based systems that could cause the Microsoft Distributed Transaction Coordinator MSDTC to stop responding. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your compute...
Security Update for Windows 2000 (KB913580)
A security issue has been identified in Windows-based systems that could cause the Microsoft Distributed Transaction Coordinator MSDTC to stop responding. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your compute...