COMMAND

	Microsoft Distributed Transaction Coordinator DoS

SYSTEMS AFFECTED

	Windows 2000

PROBLEM

	In Peter Gründl [pgrundl@kpmg.dk] of KPMG Danemark advisory [2002015] :
	

	If an attacker sends 20200 null characters to the MSDTC  service,  which
	listens on TCP port 3372, server ressources are allocated  poorly.  This
	attack can  result  in  MSDTC.EXE  spiking  at  100%  cpu  usage,  MSDTC
	refusing connections and kernel ressources being exhausted.

SOLUTION

	Get MS patch MS02-018.
	

	http://www.microsoft.com/technet/security/bulletin/ms02-018.asp