CVE-2001-0564
APC Web/SNMP Management Card < 3.0 - Denial of Service via Repeated Failed Logon Attempts
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2001-0564. PoCs published by altomo.
AI-analyzed exploit summary This Perl script exploits a denial-of-service vulnerability in APC Symmetra UPS by repeatedly sending failed telnet login attempts, locking out administrative access for a configurable duration.
Description
APC Web/SNMP Management Card prior to Firmware 310 only supports one telnet connection, which allows a remote attacker to create a denial of service via repeated failed logon attempts which temporarily locks the card.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by altomo · perldoshardware
https://www.exploit-db.com/exploits/20654
This Perl script exploits a denial-of-service vulnerability in APC Symmetra UPS by repeatedly sending failed telnet login attempts, locking out administrative access for a configurable duration.
Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
APC Symmetra UPS (and possibly other APC UPS products)
No auth needed
Prerequisites:
Network access to the target UPS telnet service (port 23)
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6199
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2430
Various Sources x_refsource_misc
ftp://ftp.apcftp.com/hardware/webcard/firmware/sy/v310/install.txt
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-02/0436.html
Scores
EPSS
0.0321
EPSS Percentile
86.6%
Details
Status
published
Products (1)
apc/ap9606
< 3.0
Published
Aug 22, 2001
Tracked Since
Feb 18, 2026