CVE-2000-0204

Trend Micro OfficeScan - Denial of Service via Multiple Connections to Port 12345

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0204. PoCs published by Jeff Stevens.

AI-analyzed exploit summary This exploit demonstrates multiple denial-of-service (DoS) techniques against Trend Micro OfficeScan by sending malformed data to port 12345, causing CPU exhaustion, crashes, or service unavailability. It also includes a script to replay administrative commands for actions like uninstallation or scan manipulation.

Description

The Trend Micro OfficeScan client allows remote attackers to cause a denial of service by making 5 connections to port 12345, which raises CPU utilization to 100%.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jeff Stevens · textdosmultiple
https://www.exploit-db.com/exploits/19780

This exploit demonstrates multiple denial-of-service (DoS) techniques against Trend Micro OfficeScan by sending malformed data to port 12345, causing CPU exhaustion, crashes, or service unavailability. It also includes a script to replay administrative commands for actions like uninstallation or scan manipulation.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Trend Micro OfficeScan (webserver management mode)
No auth needed
Prerequisites: Network access to port 12345 on target machines · OfficeScan configured in webserver management mode
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-02/0340.html
Various Sources x_refsource_misc
http://www.antivirus.com/download/ofce_patch_35.htm
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1013

Scores

EPSS 0.0736
EPSS Percentile 93.6%

Details

Status published
Products (1)
trend_micro/officescan 3.5
Published Feb 28, 2000
Tracked Since Feb 18, 2026