CVE-1999-0193

Ascend CascadeView UX - Denial of Service via Zero-Length TCP Option

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-1999-0193. PoCs published by Rootshell.

AI-analyzed exploit summary This Perl script exploits a denial-of-service vulnerability in Ascend routers by sending a malformed TCP packet to the administration port (port 9), causing the router to crash and reboot. The exploit constructs a zero-length TCP packet with specific malformed data to trigger the vulnerability.

Description

Denial of service in Ascend and 3com routers, which can be rebooted by sending a zero length TCP option.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Rootshell · perldoshardware
https://www.exploit-db.com/exploits/20332

This Perl script exploits a denial-of-service vulnerability in Ascend routers by sending a malformed TCP packet to the administration port (port 9), causing the router to crash and reboot. The exploit constructs a zero-length TCP packet with specific malformed data to trigger the vulnerability.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Ascend routers 4.5Ci12 or earlier
No auth needed
Prerequisites: Network access to the target router's administration port (port 9)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Rootshell · cdoshardware
https://www.exploit-db.com/exploits/20331

This exploit sends a malformed UDP packet to port 9 (discard) of Ascend routers, causing a denial of service (DoS) by triggering a reboot. The packet includes a magic payload and random garbage to bypass validation.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Ascend routers (versions 4.5Ci12 or earlier)
No auth needed
Prerequisites: Network access to the target router · Raw socket permissions
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0193

Scores

EPSS 0.0489
EPSS Percentile 90.9%

Details

Status published
Products (1)
ascend/cascadeview_ux 1.0
Published Dec 01, 1997
Tracked Since Feb 18, 2026