oval:org.mitre.oval:def:1990

Definition Id: oval:org.mitre.oval:def:1990

Oval ID:	oval:org.mitre.oval:def:1990
Title:	MSDTC Denial of Service Vulnerability (Win2K)
Description:	Microsoft Distributed Transaction Coordinator (MSDTC) for Windows NT 4.0, 2000 SP4, XP SP1 and SP2, and Server 2003 allows remote attackers to cause a denial of service (crash) via a BuildContextW request with a large (1) UuidString or (2) GuidIn of a certain length, which causes an out-of-range memory access, aka the MSDTC Denial of Service Vulnerability. NOTE: this is a variant of CVE-2005-2119.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-1184	Version:	7
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
Windows 2000 Service Pack 4 (or later) is installed Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or later) is installed AND the version of Msdtctm.dll is less than 2000.2.3535.0