MS02-018: Microsoft Windows Distributed Transaction Coordinator (DTC) Malformed Input DoS (319733) (intrusive check)

high Nessus Plugin ID 10939

Synopsis

The remote service is prone to a denial of service attack.

Description

By sending a long series of malformed data (such as 20200 NULL bytes) to the remote Windows MSDTC service, it is possible for an attacker to cause the associated MSDTC.EXE to use 100% of the available CPU and exhaust kernel resources.

Solution

Microsoft has reportedly included the fix in MS02-018.

See Also

https://seclists.org/bugtraq/2002/Apr/290

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2002/ms02-018

Plugin Details

Severity: High

ID: 10939

File Name: msdtc_dos.nasl

Version: 1.34

Type: remote

Agent: windows

Family: Windows

Published: 4/20/2002

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 5.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows, cpe:/a:microsoft:internet_information_server, cpe:/a:microsoft:sql_server

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 1/31/2002

Reference Information

CVE: CVE-2002-0224

BID: 4006

MSFT: MS02-018

MSKB: 319733