CVE-2000-0075
published 2000-01-13CVE-2000-0075: Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple…
PriorityP412medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
2.49%
82.7th percentile
Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nosque | msgcore | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Technote 2000/2001 - 'Filename' Command Execution / File Disclosure
exploitdb·2000-12-27
CVE-2001-0075 Technote 2000/2001 - 'Filename' Command Execution / File Disclosure
Technote 2000/2001 - 'Filename' Command Execution / File Disclosure
---
source: https://www.securityfocus.com/bid/2156/info
Technote Inc. offers a multi-communication Package that includes a web board type of service.
A script that ships with Technote, 'main.cgi', accepts a parameter called 'filename'. This remotely supplied variable is used as a filename when the open() function is called. In addition to allowing the attacker to specify a file to be opened remotely, the variable is not checked for '../' character sequences. As a result, a malicious remote user can specify any file on the file system as this variable (by using ../ sequences followed by its real path), which will be opened by the script. Its contents will then be disclosed to the attacker.
It is reported that this issu
Exploit-DB
Nosque Workshop MsgCore 1.9 - Denial of Service
exploitdb·2000-01-13
CVE-2000-0075 Nosque Workshop MsgCore 1.9 - Denial of Service
Nosque Workshop MsgCore 1.9 - Denial of Service
---
source: https://www.securityfocus.com/bid/930/info
There is a denial of service condition in Nosque Workshop's MsgCore SMTP server. The problem lies in memory used to store server input not being deallocated and eventually exhausted, causing the target NT host to freeze requiring a reboot. If a smtp client (or user sending input manually) sends multiple sequences of "HELO/ MAIL FROM/ RCPT TO / DATA" in a single connection, the memory allocated to store all of those values will not be freed and the target will stop functioning once memory runs out.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19725.zip
No writeups or analysis indexed.
2000-01-13
Published