CVE-2000-0211

Windows Media Services - Denial of Service via Misordered Handshake Packets

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0211. PoCs published by Kit Knox.

AI-analyzed exploit summary This exploit sends a sequence of malformed packets to the Microsoft Media Unicast Server, causing a denial of service by disrupting the handshake process. The server crashes due to misordered asynchronous handshake requests.

Description

The Windows Media server allows remote attackers to cause a denial of service via a series of client handshake packets that are sent in an improper sequence, aka the "Misordered Windows Media Services Handshake" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kit Knox · cdoswindows

https://www.exploit-db.com/exploits/19759

View Code ZIP pw:eip

This exploit sends a sequence of malformed packets to the Microsoft Media Unicast Server, causing a denial of service by disrupting the handshake process. The server crashes due to misordered asynchronous handshake requests.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Media Unicast Server 4.1

No auth needed

Prerequisites: Network access to the target server on port 1755

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-013

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1000

Scores

EPSS 0.2133

EPSS Percentile 97.3%

Details

Status published

Products (2)

microsoft/windows_media_services 4.0

microsoft/windows_media_services 4.1

Published Feb 23, 2000

Tracked Since Feb 18, 2026