CVE-2005-2119

Name of the Vulnerable Software and Affected Versions: Microsoft Distributed Transaction Coordinator (MSDTC) (affected versions not specified)

Description: The issue concerns the MIDL user allocate function in the MSDTC proxy, which allocates a fixed size of memory regardless of the actual size required. This allows attackers to potentially overwrite arbitrary memory locations by providing an incorrect size value to the NdrAllocate function, leading to writing management data outside the allocated buffer.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.