CVE-2005-1979

Microsoft Windows - Denial of Service via Unexpected TIP Protocol Command

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2005-1979. PoCs published by anonymous.

AI-analyzed exploit summary The provided text describes a DoS vulnerability in Microsoft Windows MSDTC service (CVE-2005-1979) but does not contain functional exploit code. It outlines the vulnerability's impact and affected systems.

Description

Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service (MSDTC service exception and exit) via an "unexpected protocol command during the reconnection request," which is not properly handled by the Transaction Internet Protocol (TIP) functionality.

Exploits (2)

exploitdb WRITEUP VERIFIED
by anonymous · textdoswindows
https://www.exploit-db.com/exploits/26341

The provided text describes a DoS vulnerability in Microsoft Windows MSDTC service (CVE-2005-1979) but does not contain functional exploit code. It outlines the vulnerability's impact and affected systems.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: Microsoft Windows MSDTC (Windows 2000, XP, Server 2003)
No auth needed
Prerequisites: Network access to MSDTC service · TIP protocol enabled on target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
cppremotewindows
https://www.exploit-db.com/exploits/1352

This is a functional proof-of-concept exploit for CVE-2005-1979, targeting a vulnerability in the Microsoft Windows Plug and Play service. The exploit attempts to trigger a buffer overflow via a maliciously crafted network packet, potentially leading to remote code execution (RCE) or denial of service (DoS).

Classification
Working Poc 90%
Attack Type
Rce | Dos
Complexity
Complex
Reliability
Racy
Target: Microsoft Windows Plug and Play service (pre-patch versions)
No auth needed
Prerequisites: Network access to the target system · Vulnerable version of the Windows Plug and Play service
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (15)

Core 15
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1338
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17161
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1134
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1283
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1513
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015037
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1550
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17223
Vendor Advisory third-party-advisory x_refsource_idefense
http://www.idefense.com/application/poi/display?id=320&type=vulnerabilities
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17172
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A686
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17509
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15058

Scores

EPSS 0.3628
EPSS Percentile 98.3%

Details

Status published
Products (6)
microsoft/windows_2000
microsoft/windows_2003_server 64-bit
microsoft/windows_2003_server itanium
microsoft/windows_2003_server r2
microsoft/windows_2003_server sp1 (2 CPE variants)
microsoft/windows_xp (3 CPE variants)
Published Oct 12, 2005
Tracked Since Feb 18, 2026