CVE-2000-0425

L-Soft LISTSERV 1.8 - Buffer Overflow in Web Archives

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0425. PoCs published by David Litchfield.

AI-analyzed exploit summary This exploit targets a buffer overflow in L-Soft Listserv's Web Archive component (wa.exe) to achieve remote code execution. It constructs a malicious payload that spawns a shell, executes a directory listing, and redirects output to a file.

Description

Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to execute arbitrary commands.

Exploits (1)

exploitdb WORKING POC VERIFIED
by David Litchfield · cremotewindows
https://www.exploit-db.com/exploits/19893

This exploit targets a buffer overflow in L-Soft Listserv's Web Archive component (wa.exe) to achieve remote code execution. It constructs a malicious payload that spawns a shell, executes a directory listing, and redirects output to a file.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: L-Soft Listserv Web Archive (wa.exe)
No auth needed
Prerequisites: Network access to the vulnerable Listserv Web Archive component
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-05/0048.html
Various Sources x_refsource_confirm
http://www.lsoft.com/news/default.asp?item=Advisory0
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1167

Scores

EPSS 0.0579
EPSS Percentile 92.1%

Details

Status published
Products (1)
lsoft/listserv 1.8
Published May 03, 2000
Tracked Since Feb 18, 2026