CVE-2000-0330

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-0330. PoCs published by UNYUN.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Windows 95/98 networking code via an overly long filename in a UNC or file:// URL. It generates an HTML file that, when loaded, triggers the overflow and executes arbitrary code (e.g., shutdown).

Description

The networking software in Windows 95 and Windows 98 allows remote attackers to execute commands via a long file name string, aka the "File Access URL" vulnerability.

Exploits (2)

exploitdb WORKING POC VERIFIED

by UNYUN · cremotewindows

https://www.exploit-db.com/exploits/19608

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Windows 95/98 networking code via an overly long filename in a UNC or file:// URL. It generates an HTML file that, when loaded, triggers the overflow and executes arbitrary code (e.g., shutdown).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows 95/98 (Japanese IE5)

No auth needed

Prerequisites: Victim must open the malicious HTML file in IE5 on Windows 95/98 · Specific address (0xbfb75a35) for non-Japanese systems may require adjustment

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by UNYUN · cremotewindows

https://www.exploit-db.com/exploits/19607

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Windows 95/98 networking code via an overly long filename in a UNC or file:// URL. It generates an HTML file that, when loaded, triggers the overflow and executes arbitrary code (e.g., shutdown).

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows 95/98 (IE4)

No auth needed

Prerequisites: Victim must open the malicious HTML file in IE4 on Windows 95/98

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-049

Windows 95 and 98 - Remote Code Execution via Long File Name String

Exploitation Summary

Description

Exploits (2)

References (1)

Scores

Details