CVE-2000-1002

CommuniGate Pro 3.3.2 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1002. PoCs published by Ussr Labs.

AI-analyzed exploit summary This Perl script exploits a denial-of-service (DoS) vulnerability in Pragma Systems TelnetServer 2000 by sending 1000 NULL characters to the rexec port (default 512), causing the server to crash. The exploit is straightforward and leverages a simple TCP socket connection to trigger the vulnerability.

Description

POP3 daemon in Stalker CommuniGate Pro 3.3.2 generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to determine valid email addresses on the server for SPAM attacks.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Ussr Labs · perldoswindows
https://www.exploit-db.com/exploits/20175

This Perl script exploits a denial-of-service (DoS) vulnerability in Pragma Systems TelnetServer 2000 by sending 1000 NULL characters to the rexec port (default 512), causing the server to crash. The exploit is straightforward and leverages a simple TCP socket connection to trigger the vulnerability.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Pragma Systems TelnetServer 2000
No auth needed
Prerequisites: Network access to the target server · Target server running TelnetServer 2000 with rexec port exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5363
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1792
Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/139523

Scores

EPSS 0.0749
EPSS Percentile 93.7%

Details

Status published
Products (1)
stalker/communigate_pro 3.3.2
Published Dec 11, 2000
Tracked Since Feb 18, 2026