4196 matches found
SAP Internet Transaction Server 6.10/6.20 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/20244/info SAP Internet Transaction Server ITS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue would allow an attacker to steal cookie-based credentials and to launch oth...
Informix Detection
The remote host is running Informix, an online transaction processing OLTP data server from IBM. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid22228; scriptversion"1.18";...
Microsoft Distributed Transaction Coordinator DoS
Two different buffer overflows causing service to crash...
CVE-2006-0034
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator MSDTC for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or...
CVE-2006-1184
Microsoft Distributed Transaction Coordinator MSDTC for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service crash via a BuildContextW request with a large 1 UuidString or 2 GuidIn of a certain length, which causes an out-of-range memory...
[EEYEB20051011B] - Microsoft Distributed Transaction Coordinator Denial of Service
Microsoft Distributed Transaction Coordinator Denial of Service http://www.eeye.com/html/research/advisories/AD20060509b.html Release Date: May 9, 2006 Date Reported: October 11, 2005 Patch Development Time In Days: 210 Severity: Low Denial of Service Systems Affected: Windows NT 4.0 Windows 2000...
MS06-018: Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow DoS (913580) (uncredentialed check)
The remote version of Windows contains a version of MSDTC Microsoft Data Transaction Coordinator service that is affected by several remote code execution and denial of service vulnerabilities. An attacker may exploit these flaws to obtain complete control of the remote host 2000, NT4 or to crash...
[EEYEB20051011A] - Microsoft Distributed Transaction Coordinator Heap Overflow
Microsoft Distributed Transaction Coordinator Heap Overflow http://www.eeye.com/html/research/advisories/AD20060509a.html Release Date: May 9, 2006 Date Reported: October 11, 2005 Patch Development Time In Days: 210 Severity: High Remote Code Execution Systems Affected: Windows NT 4.0 Windows 200...
CVE-2006-0034
CVE-2006-0034 describes a heap-based buffer overflow in MSDTC’s RPC path (msdtcprx.dll BuildContextW/BuildContext) caused by an overly long fifth argument, triggering a bug in NdrAllocate. Affected products include Windows 2000/NT4-era MSDTC deployments, with the issue leading to denial of servic...
CVE-2006-1184
Microsoft Distributed Transaction Coordinator MSDTC for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service crash via a BuildContextW request with a large 1 UuidString or 2 GuidIn of a certain length, which causes an out-of-range memory...
Preemptive Protection against Microsoft Distributed Transaction Coordinator Vulnerability (MS06-018)
Microsoft Distributed Transaction Coordinator MSDTC is a system service that coordinates transactions for Microsoft Windows platforms. A vulnerability was detected in the MDTC, allowing a remote attacker with the ability to send a crafted message to cause an affected system to stop responding...
Microsoft Distributed Transaction Coordinator (MSDTC) DoS Vulnerability (MS02-018) - Active Check
Microsoft Distributed Transaction Coordinator MSDTC is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2005-3242
Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service crash via unknown vectors in 1 the IrDA dissector and 2 the SMB dissector when SMB transaction payload reassembly is enabled...
CVE-2005-2970
Memory leak in the worker MPM worker.c for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service memory consumption via aborted connections, which prevents the memory for the transaction pool from being reused for other connections...
Microsoft Distributed Transaction Coordinator service memory corruption
Memory corruption as a result of integer overflow with anonymous remote access Windows 2000 and authenticated access under Windows XP/2003...
Multiple Microsoft Distributed Transaction Controller DoS conditions
Problems with TIP protocols handling, bounce attack is possible...
CVE-2005-1979
Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service MSDTC service exception and exit via an "unexpected protocol command during the reconnection request," which is not properly handled by the Transaction Internet Protocol TIP functionality...
CVE-2005-1980
Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service MSDTC service hang via a crafted Transaction Internet Protocol TIP message that causes DTC to repeatedly connect to a target IP and port number after an error occurs, aka the "Distributed TI...
iDEFENSE Security Advisory 10.11.05: Microsoft Distributed Transaction Controller TIP DoS Vulnerability
Microsoft Distributed Transaction Controller TIP DoS Vulnerability iDEFENSE Security Advisory 10.11.05 www.idefense.com/application/poi/display?id=320&type=vulnerabilities October 11, 2005 I. BACKGROUND The Distributed Transaction Controller provides a method for disparate processes to complete...
CVE-2005-1979
Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service MSDTC service exception and exit via an "unexpected protocol command during the reconnection request," which is not properly handled by the Transaction Internet Protocol TIP functionality...