Distributed Transaction Coordinator
by Microsoft
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2005-2119 | 0.06 | — | 0.39 | Oct 12, 2005 | The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows attackers to overwrite arbitrary memory locations using an incorrect size value that is… | |||
| CVE-2005-1979 | 0.06 | — | 0.36 | Oct 12, 2005 | Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service (MSDTC service exception and exit) via an "unexpected protocol command during the reconnection request," which is not properly handled by the Transaction Internet Protocol… | |||
| CVE-2006-0034 | 0.03 | — | 0.31 | May 10, 2006 | Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to… | |||
| CVE-2006-1184 | 0.02 | — | 0.30 | May 10, 2006 | Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which… | |||
| CVE-2025-50166 | 0.00 | — | 0.01 | Aug 12, 2025 | Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network. | |||
| CVE-2024-38049 | 0.00 | — | 0.02 | Jul 9, 2024 | Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability |
- CVE-2005-2119Oct 12, 2005risk 0.06cvss —epss 0.39
The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows attackers to overwrite arbitrary memory locations using an incorrect size value that is…
- CVE-2005-1979Oct 12, 2005risk 0.06cvss —epss 0.36
Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service (MSDTC service exception and exit) via an "unexpected protocol command during the reconnection request," which is not properly handled by the Transaction Internet Protocol…
- CVE-2006-0034May 10, 2006risk 0.03cvss —epss 0.31
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to…
- CVE-2006-1184May 10, 2006risk 0.02cvss —epss 0.30
Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which…
- CVE-2025-50166Aug 12, 2025risk 0.00cvss —epss 0.01
Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.
- CVE-2024-38049Jul 9, 2024risk 0.00cvss —epss 0.02
Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability