Total vulnerabilities in the database
Heap-based buffer overflow in the CRpcIoManagerServer::BuildContext function in msdtcprx.dll for Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0 and Windows 2000 SP2 and SP3 allows remote attackers to execute arbitrary code via a long fifth argument to the BuildContextW or BuildContext opcode, which triggers a bug in the NdrAllocate function, aka the MSDTC Invalid Memory Access Vulnerability.
| Software | From | Fixed in |
|---|---|---|
| microsoft / distributed_transaction_coordinator | - | - |
| microsoft / windows_nt | 4.0 | 4.0.x |
| microsoft / windows_nt | 4.0-sp5 | 4.0-sp5.x |
| microsoft / windows_xp | - | - |
| microsoft / windows_nt | 4.0-sp3 | 4.0-sp3.x |
| microsoft / windows_2003_server | web | web.x |
| microsoft / windows_2003_server | enterprise | enterprise.x |
| microsoft / windows_nt | 4.0-sp2 | 4.0-sp2.x |
| microsoft / windows_nt | 4.0-sp6a | 4.0-sp6a.x |
| microsoft / windows_2003_server | enterprise_64-bit | enterprise_64-bit.x |
| microsoft / windows_2000 | - | - |
| microsoft / windows_nt | 4.0-sp6 | 4.0-sp6.x |
| microsoft / windows_nt | 4.0-sp1 | 4.0-sp1.x |
| microsoft / windows_nt | 4.0-sp4 | 4.0-sp4.x |
| microsoft / windows_2003_server | r2 | r2.x |
| microsoft / windows_2003_server | standard | standard.x |