CVE-2000-0278

SalesLogix Corporation Eviewer - Unauthenticated Denial of Service via slxweb.dll Administration URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0278. PoCs published by Todd Beebe.

AI-analyzed exploit summary This exploit demonstrates an unauthorized administrative command execution vulnerability in SalesLogix eViewer. By directly accessing a specific URL, an attacker can shut down the slxweb.dll process, leading to a denial of service.

Description

The SalesLogix Eviewer allows remote attackers to cause a denial of service by accessing the URL for the slxweb.dll administration program, which does not authenticate the user.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Todd Beebe · textdoswindows
https://www.exploit-db.com/exploits/19835

This exploit demonstrates an unauthorized administrative command execution vulnerability in SalesLogix eViewer. By directly accessing a specific URL, an attacker can shut down the slxweb.dll process, leading to a denial of service.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: SalesLogix eViewer (SalesLogix 2000)
No auth needed
Prerequisites: Access to the target web server · SalesLogix eViewer installed with default configuration
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/current/0006.html
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1089

Scores

EPSS 0.0525
EPSS Percentile 91.6%

Details

Status published
Products (1)
saleslogix/corporation_eviewer 1.0
Published Aug 03, 2000
Tracked Since Feb 18, 2026