CVE-2000-0622

O'Reilly WebSite Professional 2.x - Remote Code Execution via Long Keywords Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0622. PoCs published by Robert Horton.

AI-analyzed exploit summary This exploit targets a buffer overflow in O'Reilly WebSite Professional's webfind.exe utility via the QUERY_STRING variable. It constructs a malicious payload to execute calc.exe on the target server by overflowing the buffer with shellcode.

Description

Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Robert Horton · cremotewindows
https://www.exploit-db.com/exploits/20086

This exploit targets a buffer overflow in O'Reilly WebSite Professional's webfind.exe utility via the QUERY_STRING variable. It constructs a malicious payload to execute calc.exe on the target server by overflowing the buffer with shellcode.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: O'Reilly WebSite Professional 2.X
No auth needed
Prerequisites: Network access to the target server · WebSite Professional 2.X with webfind.exe exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1487
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/4962
Various Sources vendor-advisory x_refsource_nai
http://www.nai.com/research/covert/advisories/043.asp

Scores

EPSS 0.1275
EPSS Percentile 95.8%

Details

Status published
Products (3)
oreilly/website_professional 2.3.18
oreilly/website_professional 2.4
oreilly/website_professional 2.4.9
Published Jul 19, 2000
Tracked Since Feb 18, 2026