CVE-2000-0155

Windows NT - Unauthenticated Code Execution via Autorun.inf

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0155. PoCs published by Eric Stevens.

AI-analyzed exploit summary This is a technical writeup describing the Windows Autorun feature vulnerability (CVE-2000-0155), which allows arbitrary code execution via crafted autorun.inf files. It includes a step-by-step exploitation method but lacks functional exploit code.

Description

Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Eric Stevens · textlocalwindows

https://www.exploit-db.com/exploits/19754

View Code ZIP pw:eip

This is a technical writeup describing the Windows Autorun feature vulnerability (CVE-2000-0155), which allows arbitrary code execution via crafted autorun.inf files. It includes a step-by-step exploitation method but lacks functional exploit code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows (various versions)

Auth required

Prerequisites: Write access to the root of a logical drive · Physical or network access to the target system

MITRE ATT&CK

T1204 - User Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/993

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=000701bf79cd%24fdb5a620%244c4342a6%40mightye.org

Scores

EPSS 0.0394

EPSS Percentile 89.1%

Details

CWE

CWE-94

Status published

Products (3)

microsoft/windows_95

microsoft/windows_98

microsoft/windows_nt 4.0

Published Feb 18, 2000

Tracked Since Feb 18, 2026