CVE-2000-0075

MsgCore - Denial of Service via Repeated SMTP Commands

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0075. PoCs published by Ussr Labs.

AI-analyzed exploit summary The exploit describes a denial of service vulnerability in Nosque Workshop's MsgCore SMTP server where memory is not deallocated after processing multiple sequences of SMTP commands, leading to memory exhaustion and system freeze.

Description

Super Mail Transfer Package (SMTP), later called MsgCore, has a memory leak which allows remote attackers to cause a denial of service by repeating multiple HELO, MAIL FROM, RCPT TO, and DATA commands in the same session.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Ussr Labs · textdoswindows

https://www.exploit-db.com/exploits/19725

View Code ZIP pw:eip

The exploit describes a denial of service vulnerability in Nosque Workshop's MsgCore SMTP server where memory is not deallocated after processing multiple sequences of SMTP commands, leading to memory exhaustion and system freeze.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Nosque Workshop MsgCore SMTP server

No auth needed

Prerequisites: Network access to the SMTP server

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/930

Scores

EPSS 0.0249

EPSS Percentile 82.6%

Details

Status published

Products (1)

nosque/msgcore 1.9

Published Jan 13, 2000

Tracked Since Feb 18, 2026