CVE-2017-6444
Severity CVSS v4.0:
Pending analysis
Type:
CWE-400
Uncontrolled Resource Consumption ('Resource Exhaustion')
Publication date:
12/03/2017
Last modified:
20/04/2025
Description
The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service (CPU consumption) by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 100% and the router requires a reboot for normal operation.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:mikrotik:routeros:6.25:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mikrotik:router_hap_lite:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.exploitalert.com/view-details.html?id=26137
- https://cxsecurity.com/issue/WLB-2017030029
- https://packetstormsecurity.com/files/141449/Mikrotik-Hap-Lite-6.25-Denial-Of-Service.html
- https://www.exploit-db.com/exploits/41601/
- http://www.exploitalert.com/view-details.html?id=26137
- https://cxsecurity.com/issue/WLB-2017030029
- https://packetstormsecurity.com/files/141449/Mikrotik-Hap-Lite-6.25-Denial-Of-Service.html
- https://www.exploit-db.com/exploits/41601/