CVE-2000-0167
Internet Information Server - Denial of Service via Long Filename in Pickup Directory
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-0167. PoCs published by Valentijn.
AI-analyzed exploit summary This exploit creates a malformed email file with a long filename in the IIS pickup directory, causing inetinfo.exe to crash due to a buffer overflow. The PoC generates a file with an 80+ character name and a .eml extension, triggering a DoS condition.
Description
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
Exploits (1)
This exploit creates a malformed email file with a long filename in the IIS pickup directory, causing inetinfo.exe to crash due to a buffer overflow. The PoC generates a file with an 80+ character name and a .eml extension, triggering a DoS condition.