CVE-2000-0757

Aptis Totalbill - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0757. PoCs published by Brian Masney.

AI-analyzed exploit summary This exploit targets an unauthenticated remote command execution vulnerability in Aptis TotalBill's Sysgen service (port 9998). It sends a crafted command to execute arbitrary shell commands, demonstrating how an attacker can gain root access by appending a user to /etc/passwd.

Description

The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brian Masney · cremotelinux

https://www.exploit-db.com/exploits/20145

View Code ZIP pw:eip

This exploit targets an unauthenticated remote command execution vulnerability in Aptis TotalBill's Sysgen service (port 9998). It sends a crafted command to execute arbitrary shell commands, demonstrating how an attacker can gain root access by appending a user to /etc/passwd.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Aptis TotalBill Sysgen service

No auth needed

Prerequisites: Network access to port 9998 · Sysgen service running on target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1555

Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-08/0074.html

Scores

EPSS 0.0409

EPSS Percentile 89.4%

Details

Status published

Products (1)

aptis_software/totalbill 3.0

Published Oct 20, 2000

Tracked Since Feb 18, 2026