Microsoft Windows NT 4.0 MTS Package Administration Registry Key Vulnerability

Microsoft Transaction Server (MTS) is the mechanism used by Microsoft Windows NT to handle transactions or MTS packages which are series of software modules that form a transaction.

The registry key in Windows NT 4.0 that handles the administration of Microsoft Transaction Server (MTS) is not properly configured to deny write access to unprivileged users. Modification rights on this particular registry should only be reserved for administrators. However, any user that is able to log onto a system with MTS installed is able to alter the values for the MTS registry key and its subkeys located at HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Transaction Server\Packages. This would provide unprivileged users the ability to execute or add MTS packages which would be run under the security context of their account. The registry key could be modified remotely if the Winreg key was enabled to allow remote access to the registry (Winreg is enabled by default).

MTS is not installed by default on Windows NT 4.0.


Privacy Statement
Copyright 2010, SecurityFocus