CVE-2000-1173

Microsys CyberPatrol - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1173. PoCs published by Joey Maier.

AI-analyzed exploit summary This Perl script exploits an information leakage vulnerability in CyberPatrol's registration process, where sensitive data (including credit card details) is sent in cleartext or weakly encrypted. The script parses network traffic logs to extract and decode the leaked information.

Description

Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Joey Maier · perlremotemultiple

https://www.exploit-db.com/exploits/20425

View Code ZIP pw:eip

This Perl script exploits an information leakage vulnerability in CyberPatrol's registration process, where sensitive data (including credit card details) is sent in cleartext or weakly encrypted. The script parses network traffic logs to extract and decode the leaked information.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: CyberPatrol (version not specified)

No auth needed

Prerequisites: Network traffic logs containing CyberPatrol registration data

MITRE ATT&CK

T1040 - Network Sniffing T1119 - Automated Collection

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1977

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-11/0323.html

Scores

EPSS 0.0157

EPSS Percentile 72.2%

Details

Status published

Products (2)

microsys/cyberpatrol 4.04.003

microsys/cyberpatrol 4.04.005

Published Jan 09, 2001

Tracked Since Feb 18, 2026