CVE-2005-1980

Microsoft Windows - Denial of Service via Crafted TIP Message

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1980.

AI-analyzed exploit summary This is a proof-of-concept exploit for CVE-2005-1980, targeting a vulnerability in the Windows DCOM RPC interface. The code attempts to trigger a buffer overflow by sending maliciously crafted DCOM RPC packets to a target system, potentially leading to remote code execution (RCE) or denial of service (DoS).

Description

Distributed Transaction Controller in Microsoft Windows allows remote servers to cause a denial of service (MSDTC service hang) via a crafted Transaction Internet Protocol (TIP) message that causes DTC to repeatedly connect to a target IP and port number after an error occurs, aka the "Distributed TIP Vulnerability."

Exploits (1)

exploitdb WORKING POC
cppremotewindows
https://www.exploit-db.com/exploits/1352

This is a proof-of-concept exploit for CVE-2005-1980, targeting a vulnerability in the Windows DCOM RPC interface. The code attempts to trigger a buffer overflow by sending maliciously crafted DCOM RPC packets to a target system, potentially leading to remote code execution (RCE) or denial of service (DoS).

Classification
Working Poc 90%
Attack Type
Rce | Dos
Complexity
Complex
Reliability
Racy
Target: Microsoft Windows DCOM RPC (pre-patch versions)
No auth needed
Prerequisites: Network access to target system · DCOM RPC service exposed
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (15)

Core 15
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015037
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17161
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1253
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1413
Vendor Advisory third-party-advisory x_refsource_idefense
http://www.idefense.com/application/poi/display?id=319&type=vulnerabilities
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1136
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17223
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1203
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17172
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1325
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17509
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1182
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15059

Scores

EPSS 0.3559
EPSS Percentile 98.2%

Details

Status published
Products (6)
microsoft/windows_2000
microsoft/windows_2003_server 64-bit
microsoft/windows_2003_server itanium
microsoft/windows_2003_server r2
microsoft/windows_2003_server sp1 (2 CPE variants)
microsoft/windows_xp (3 CPE variants)
Published Oct 12, 2005
Tracked Since Feb 18, 2026