CVE-2000-0776

Mediahouse Statistics Server <5.02x - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0776. PoCs published by Zan.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Mediahouse Statistics Server LiveStats 5.02x by sending a maliciously crafted GET request with over 2030 bytes, potentially leading to remote code execution (RCE) with system privileges on Windows 2000.

Description

Mediahouse Statistics Server 5.02x allows remote attackers to execute arbitrary commands via a long HTTP GET request.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Zan · perlremotewindows

https://www.exploit-db.com/exploits/20148

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Mediahouse Statistics Server LiveStats 5.02x by sending a maliciously crafted GET request with over 2030 bytes, potentially leading to remote code execution (RCE) with system privileges on Windows 2000.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Mediahouse Statistics Server LiveStats 5.02x

No auth needed

Prerequisites: Network access to the target server · Target running vulnerable version of Mediahouse Statistics Server LiveStats

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5113

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1568

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-08/0118.html

Scores

EPSS 0.0374

EPSS Percentile 88.4%

Details

Status published

Products (1)

mediahouse_software/statistics_server_livestats 5.02

Published Oct 20, 2000

Tracked Since Feb 18, 2026