CVE-2000-0073
Microsoft Windows 2000 98 and NT - Denial of Service via Malformed RTF Control Word
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-0073. PoCs published by Pauli Ojanpera.
AI-analyzed exploit summary The exploit describes a buffer overflow vulnerability in Riched20.dll and Riched32.dll, which parse Rich Text Format (RTF) files. By inserting 32 (or more) characters after the .rtf identifier in an RTF file, an attacker can crash applications like Wordpad, potentially executing arbitrary code at the user's privilege level.
Description
Buffer overflow in Microsoft Rich Text Format (RTF) reader allows attackers to cause a denial of service via a malformed control word.
Exploits (1)
The exploit describes a buffer overflow vulnerability in Riched20.dll and Riched32.dll, which parse Rich Text Format (RTF) files. By inserting 32 (or more) characters after the .rtf identifier in an RTF file, an attacker can crash applications like Wordpad, potentially executing arbitrary code at the user's privilege level.