CVE-2000-0377

Windows NT 4.0 - Authenticated Denial of Service via Malformed Remote Registry Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-0377. PoCs published by Renaud Deraison.

AI-analyzed exploit summary This is a Nessus script (NASL) designed to exploit CVE-2000-0377, a denial-of-service vulnerability in Windows NT 4.0's winlogon.exe. It crafts malformed remote registry requests to crash the target system, requiring a reboot.

Description

The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Renaud Deraison · doswindows
https://www.exploit-db.com/exploits/20006

This is a Nessus script (NASL) designed to exploit CVE-2000-0377, a denial-of-service vulnerability in Windows NT 4.0's winlogon.exe. It crafts malformed remote registry requests to crash the target system, requiring a reboot.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Windows NT 4.0
Auth required
Prerequisites: Authenticated network access · Remote registry service enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Renaud Deraison · cdoswindows
https://www.exploit-db.com/exploits/20005

This exploit targets a denial-of-service vulnerability in Windows NT 4.0's winlogon.exe by sending malformed remote registry requests. It authenticates and crafts SMB packets to trigger a crash, requiring a reboot.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Windows NT 4.0
Auth required
Prerequisites: Network access to target · Valid credentials for authentication
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1021
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1331
Vendor Advisory vendor-advisory x_refsource_mskb
http://www.microsoft.com/technet/support/kb.asp?ID=264684

Scores

EPSS 0.1922
EPSS Percentile 97.0%

Details

Status published
Products (1)
microsoft/windows_nt 4.0
Published Jun 08, 2000
Tracked Since Feb 18, 2026