CVE-2000-0165

Delegate - Remote Code Execution via Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0165. PoCs published by scut.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Delegate proxy server versions 5.9.x to 6.0.x. It uses a two-stage shellcode approach to achieve remote code execution, first sending a minimalistic read() shellcode followed by a more complex shellcode to spawn a shell.

Description

The Delegate application proxy has several buffer overflows which allow a remote attacker to execute commands.

Exploits (1)

exploitdb WORKING POC VERIFIED
by scut · cremotelinux
https://www.exploit-db.com/exploits/19634

This exploit targets a buffer overflow vulnerability in Delegate proxy server versions 5.9.x to 6.0.x. It uses a two-stage shellcode approach to achieve remote code execution, first sending a minimalistic read() shellcode followed by a more complex shellcode to spawn a shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Delegate proxy server 5.9.x - 6.0.x
No auth needed
Prerequisites: Network access to the target server · Delegate proxy server running on a vulnerable version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/4195
Third Party Advisory, US Government Resource third-party-advisory government-resource x_refsource_ciac
http://www.ciac.org/ciac/bulletins/k-023.shtml

Scores

EPSS 0.1146
EPSS Percentile 95.5%

Details

Status published
Products (2)
etl/delegate 5.9
etl/delegate 6.0
Published Nov 13, 1999
Tracked Since Feb 18, 2026