CVE-2000-1186

phf - Buffer Overflow via MIME Header

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1186. PoCs published by proton.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the `phf` CGI script on Linux-ix86 systems. It sends a crafted HTTP GET request with shellcode to execute arbitrary commands, demonstrating remote code execution (RCE).

Description

Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header.

Exploits (1)

exploitdb WORKING POC VERIFIED

by proton · cremotecgi

https://www.exploit-db.com/exploits/211

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the `phf` CGI script on Linux-ix86 systems. It sends a crafted HTTP GET request with shellcode to execute arbitrary commands, demonstrating remote code execution (RCE).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: phf CGI script (version not specified)

No auth needed

Prerequisites: Network access to the target web server · Presence of vulnerable `phf` CGI script

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5970

Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-11/0221.html

Scores

EPSS 0.0349

EPSS Percentile 87.6%

Details

Status published

Products (1)

phf/phf

Published Jan 09, 2001

Tracked Since Feb 18, 2026