CVE-2018-11492
HIGHASUS HG100 Firmware - Denial of Service via IPv4 Packet Flood
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2018-11492. PoCs published by YinT Wang.
AI-analyzed exploit summary This exploit demonstrates a denial-of-service (DoS) attack against ASUS HG100 devices via IPv4 packet flooding using hping3 or SlowHTTPDOS using slowhttptest. The attack requires local network access and causes the device's web server to crash after sustained traffic.
Description
ASUS HG100 devices allow denial of service via an IPv4 packet flood.
Exploits (1)
exploitdb
WORKING POC
by YinT Wang · bashdoshardware
https://www.exploit-db.com/exploits/46720
This exploit demonstrates a denial-of-service (DoS) attack against ASUS HG100 devices via IPv4 packet flooding using hping3 or SlowHTTPDOS using slowhttptest. The attack requires local network access and causes the device's web server to crash after sustained traffic.
Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
ASUS HG100 with firmware version 1.05.12
No auth needed
Prerequisites:
Local network access to the target device · hping3 or slowhttptest installed on the attacker's machine
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://mars-cheng.github.io/blog/2018/CVE-2018-11492/
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/46720/
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/152542/ASUS-HG100-Denial-Of-Service.html
Scores
CVSS v3
7.5
EPSS
0.1139
EPSS Percentile
95.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (1)
asus/hg100_firmware
Published
Aug 10, 2018
Tracked Since
Feb 18, 2026