← back
CVE-2017-6444

CVE-2017-6444

EPSS 13.5%
The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service (CPU consumption) by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 100% and the router requires a reboot for normal operation.
Affected products
n/a · n/a
public PoCs found3
cve_referencepacketstormsecurity.com/files/141449/Mikrotik-Hap-Lite-6.25-Denial-Of-Service.htmlunverifiedcve_referencewww.exploit-db.com/exploits/41601/unverifiedexploitdbwww.exploit-db.com/exploits/41601unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://cxsecurity.com/issue/WLB-2017030029https://packetstormsecurity.com/files/141449/Mikrotik-Hap-Lite-6.25-Denial-Of-Service.htmlhttps://www.exploit-db.com/exploits/41601/http://www.exploitalert.com/view-details.html?id=26137