CVE-2002-1072

ZyXEL Prestige 642R 2.50(FA.1) and Prestige 310 V3.25(M.01) - Denial of Service via Oversized ICMP Packet

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1072. PoCs published by Jeff w. Roberson.

AI-analyzed exploit summary This exploit sends malformed IP packets to ZyXEL routers, causing a 30-second denial of service. It constructs fragmented ICMP packets with spoofed source addresses to trigger the vulnerability.

Description

ZyXEL Prestige 642R 2.50(FA.1) and Prestige 310 V3.25(M.01), allows remote attackers to cause a denial of service via an oversized, fragmented "jolt" style ICMP packet.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jeff w. Roberson · cdoshardware
https://www.exploit-db.com/exploits/21637

This exploit sends malformed IP packets to ZyXEL routers, causing a 30-second denial of service. It constructs fragmented ICMP packets with spoofed source addresses to trigger the vulnerability.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: ZyXEL 642R and Prestige 310 routers (and potentially other ZyNOS-based routers)
No auth needed
Prerequisites: Raw socket permissions · Network access to the target router
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9655.php
Third Party Advisory mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0036.html
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5292
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/283999

Scores

EPSS 0.0321
EPSS Percentile 86.6%

Details

Status published
Products (2)
zyxel/prestige 310
zyxel/prestige 642r
Published Oct 04, 2002
Tracked Since Feb 18, 2026