CVE-2003-0290

eServ 2.9x - Denial of Service via Memory Leak

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2003-0290. PoCs published by rash, Matthew Murphy.

AI-analyzed exploit summary This exploit targets a memory leak vulnerability in EServ versions 2.92 to 3.0 by repeatedly sending large buffers of random data to exhaust memory resources, resulting in a denial of service (DoS). The code establishes a TCP connection and floods the target with data until the connection breaks.

Description

Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed when the connection is terminated.

Exploits (2)

exploitdb WORKING POC VERIFIED
by rash · cdoswindows
https://www.exploit-db.com/exploits/22586

This exploit targets a memory leak vulnerability in EServ versions 2.92 to 3.0 by repeatedly sending large buffers of random data to exhaust memory resources, resulting in a denial of service (DoS). The code establishes a TCP connection and floods the target with data until the connection breaks.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: EServ 2.92 to 3.0
No auth needed
Prerequisites: Network access to the target EServ instance · Target service (e.g., web on port 80) must be running
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Matthew Murphy · perldoswindows
https://www.exploit-db.com/exploits/22585

This Perl script exploits a denial of service vulnerability in EServ by repeatedly opening and closing TCP connections, causing memory exhaustion due to improper memory management in the server.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: EServ 2.92 to 3.0
No auth needed
Prerequisites: Network access to the target EServ instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/11973
Third Party Advisory mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0064.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/7552
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105284631428187&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105284630228137&w=2

Scores

EPSS 0.0785
EPSS Percentile 93.9%

Details

Status published
Products (1)
etype/eserv 2.9x
Published Jun 16, 2003
Tracked Since Feb 18, 2026