CVE-2001-0270

Marconi ASX-1000 - Denial of Service via Malformed SYN-FIN Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0270. PoCs published by J.K. Garvey.

AI-analyzed exploit summary This exploit sends a crafted TCP packet with SYN, FIN, and More Fragment bits set to a Marconi ASX-1000 switch, causing a denial of service by forcing services into close_wait status. It requires root privileges to create raw sockets and spoofs the source IP address.

Description

Marconi ASX-1000 ASX switches allow remote attackers to cause a denial of service in the telnet and web management interfaces via a malformed packet with the SYN-FIN and More Fragments attributes set.

Exploits (1)

exploitdb WORKING POC VERIFIED

by J.K. Garvey · cdoshardware

https://www.exploit-db.com/exploits/20644

View Code ZIP pw:eip

This exploit sends a crafted TCP packet with SYN, FIN, and More Fragment bits set to a Marconi ASX-1000 switch, causing a denial of service by forcing services into close_wait status. It requires root privileges to create raw sockets and spoofs the source IP address.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Marconi ASX-1000 Switches with Forethought firmware 6.2

No auth needed

Prerequisites: root privileges · network access to the target switch

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2001-02/0349.html

Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/2400

Scores

EPSS 0.0251

EPSS Percentile 82.8%

Details

Status published

Products (2)

marconi/asx-1000

marconi/forethought 6.2

Published May 03, 2001

Tracked Since Feb 18, 2026