CVE-2001-0097

Infinite Interchange 3.6.1 - Denial of Service via Large POST Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0097. PoCs published by SNS Research.

AI-analyzed exploit summary This exploit demonstrates a denial of service (DoS) vulnerability in Infinite Interchange email server by sending a malformed POST request with approximately 963 bytes, causing the service to crash. The vulnerability may stem from a buffer overflow, though arbitrary code execution is unconfirmed.

Description

The Web interface for Infinite Interchange 3.6.1 allows remote attackers to cause a denial of service (application crash) via a large POST request.

Exploits (1)

exploitdb WORKING POC VERIFIED

by SNS Research · textdoswindows

https://www.exploit-db.com/exploits/20518

View Code ZIP pw:eip

This exploit demonstrates a denial of service (DoS) vulnerability in Infinite Interchange email server by sending a malformed POST request with approximately 963 bytes, causing the service to crash. The vulnerability may stem from a buffer overflow, though arbitrary code execution is unconfirmed.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Infinite Interchange email server

No auth needed

Prerequisites: network access to the target server · HTTP server port (80) open

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/2140

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/152403

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5798

Scores

EPSS 0.0318

EPSS Percentile 86.4%

Details

Status published

Products (1)

infinite/infinite_interchange 3.61

Published Feb 12, 2001

Tracked Since Feb 18, 2026