CVE-2002-1790

Microsoft IIS 4.0-5.0 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1790. PoCs published by JWC.

AI-analyzed exploit summary This is a writeup describing the encapsulated SMTP address vulnerability in Microsoft Exchange 5.5 and IIS 4.0/5.0 SMTP service. It includes an example SMTP session demonstrating the vulnerability but does not contain executable exploit code.

Description

The SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote attackers to bypass anti-relaying rules and send spam or spoofed messages via encapsulated SMTP addresses, a similar vulnerability to CVE-1999-0682.

Exploits (1)

exploitdb WRITEUP VERIFIED
by JWC · textremotewindows
https://www.exploit-db.com/exploits/21613

This is a writeup describing the encapsulated SMTP address vulnerability in Microsoft Exchange 5.5 and IIS 4.0/5.0 SMTP service. It includes an example SMTP session demonstrating the vulnerability but does not contain executable exploit code.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Microsoft Exchange 5.5, IIS 4.0/5.0 SMTP service
No auth needed
Prerequisites: Access to SMTP service
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/281914
Broken Link vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9580.php
Exploit, Patch, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5213

Scores

EPSS 0.3397
EPSS Percentile 98.2%

Details

Status published
Products (3)
microsoft/exchange_server 5.5 (3 CPE variants)
microsoft/internet_information_server 4.0
microsoft/internet_information_services 5.0
Published Dec 31, 2002
Tracked Since Feb 18, 2026