CVE-2000-0778

Internet Information Services 5.0 - Source Code Disclosure via Translate Header

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-0778. PoCs published by Roelof Temmingh, smiler.

AI-analyzed exploit summary This exploit leverages a vulnerability in Microsoft IIS 5.0 where appending a trailing slash to a scriptable file (e.g., ASP, ASA) and sending a 'Translate: f' header forces the server to return the source code instead of executing it. The PoC sends a crafted HTTP GET request to retrieve the file contents.

Description

IIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Roelof Temmingh · perlremotewindows

https://www.exploit-db.com/exploits/20152

View Code ZIP pw:eip

This exploit leverages a vulnerability in Microsoft IIS 5.0 where appending a trailing slash to a scriptable file (e.g., ASP, ASA) and sending a 'Translate: f' header forces the server to return the source code instead of executing it. The PoC sends a crafted HTTP GET request to retrieve the file contents.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Microsoft IIS 5.0

No auth needed

Prerequisites: Network access to the target IIS server · Knowledge of the target file path

MITRE ATT&CK

T1119 - Automated Collection

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by smiler · perlremotewindows

https://www.exploit-db.com/exploits/20151

View Code ZIP pw:eip

This exploit leverages a vulnerability in Microsoft IIS 5.0 where appending a backslash to a scriptable file URL and sending a 'Translate: f' header forces the server to return the source code instead of executing it. The script uses Perl with LWP::UserAgent to craft the malicious request.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Microsoft IIS 5.0

No auth needed

Prerequisites: Target running Microsoft IIS 5.0 · Network access to the target server

MITRE ATT&CK

T1119 - Automated Collection

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory mailing-list x_refsource_ntbugtraq

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0008&L=ntbugtraq&F=&S=&P=5212

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-058

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/templates/archive.pike?list=1&msg=080D5336D882D211B56B0060080F2CD696A7C9%40beta.mia.cz

Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1578

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A927

Scores

EPSS 0.8728

EPSS Percentile 99.7%

Details

Status published

Products (1)

microsoft/internet_information_services 5.0

Published Oct 20, 2000

Tracked Since Feb 18, 2026