Security Advisory

CVE-2006-0034

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-05-09 23:00:00

Last updated 2024-08-07 16:18:20

Assigner microsoft

State PUBLISHED

Description

Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or BuildContext opcode, which triggers a bug in the NdrAllocate function, aka the MSDTC Invalid Memory Access Vulnerability.

← Browse all CVEs View on cve.org ↗