CVE-2000-0741

NAI Net Tools PKI server <1.0 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0741. PoCs published by Juliano Rizzo.

AI-analyzed exploit summary This exploit leverages a format string vulnerability in Network Associates' Net Tools PKI server's Enrollment Web Server (strong.exe) via TCP port 444. The vulnerability allows remote attackers to execute arbitrary code or cause a denial of service by crafting a malicious URL with an .XUDA extension.

Description

Format string vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to execute arbitrary code via format strings in a URL with a .XUDA extension.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Juliano Rizzo · textremotewindows
https://www.exploit-db.com/exploits/20136

This exploit leverages a format string vulnerability in Network Associates' Net Tools PKI server's Enrollment Web Server (strong.exe) via TCP port 444. The vulnerability allows remote attackers to execute arbitrary code or cause a denial of service by crafting a malicious URL with an .XUDA extension.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Network Associates Net Tools PKI server (strong.exe)
No auth needed
Prerequisites: Network access to TCP port 444 on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/1490
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1538

Scores

EPSS 0.0520
EPSS Percentile 91.4%

Details

Status published
Products (3)
network_associates/net_tools_pki_server 1.0
network_associates/net_tools_pki_server 1.0hotfix1
network_associates/net_tools_pki_server 1.0hotfix2
Published Oct 20, 2000
Tracked Since Feb 18, 2026