CVE-2005-1978

Microsoft Windows COM+ - Remote Code Execution

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1978.

AI-analyzed exploit summary This is a functional proof-of-concept exploit for CVE-2005-1978, targeting a vulnerability in the Microsoft DTC (Distributed Transaction Coordinator) service. The exploit sends crafted packets to trigger a memory corruption issue, potentially leading to remote code execution, though the author notes it is unreliable and often results in a denial-of-service condition.

Description

COM+ in Microsoft Windows does not properly "create and use memory structures," which allows local users or remote attackers to execute arbitrary code.

Exploits (1)

exploitdb WORKING POC

cppremotewindows

https://www.exploit-db.com/exploits/1352

View Code ZIP pw:eip

This is a functional proof-of-concept exploit for CVE-2005-1978, targeting a vulnerability in the Microsoft DTC (Distributed Transaction Coordinator) service. The exploit sends crafted packets to trigger a memory corruption issue, potentially leading to remote code execution, though the author notes it is unreliable and often results in a denial-of-service condition.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: Microsoft Windows DTC (Distributed Transaction Coordinator)

No auth needed

Prerequisites: Network access to the target system · DTC service running on the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (15)

Core 15

Core References

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17161

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A576

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1261

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1269

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-051

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15057

Vendor Advisory x_refsource_confirm

http://support.avaya.com/elmodocs2/security/ASA-2005-214.pdf

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17223

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17172

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1499

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/950516

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A816

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/17509

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA05-284A.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1466

Scores

EPSS 0.5686

EPSS Percentile 98.9%

Details

Status published

Products (6)

microsoft/windows_2000

microsoft/windows_2003_server 64-bit

microsoft/windows_2003_server itanium

microsoft/windows_2003_server r2

microsoft/windows_2003_server sp1 (2 CPE variants)

microsoft/windows_xp (3 CPE variants)

Published Oct 12, 2005

Tracked Since Feb 18, 2026