Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-2119Microsoft Windows 2003 Server vulnerability

5 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
59.3%
top 1.75%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Windows 2003 Server
Timeline
PublishedOct 12
Latest updateMay 1

Description

The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows attackers to overwrite arbitrary memory locations using an incorrect size value that is provided to the NdrAllocate function, which writes management data to memory outside of the allocated buffer.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-jmff-53w8-2jwr: The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX2022-05-01
CVEList
CVE-2005-2119: The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX2005-10-11

💥Exploits & PoCs

2
Exploit-DB
Microsoft Windows - DTC Remote (MS05-051) (2)2005-12-01
Exploit-DB
Microsoft Windows - MSDTC Service Remote Memory Modification (PoC) (MS05-051)2005-11-27
CVE-2005-2119 — Microsoft vulnerability | cvebase