Vulnerabilities > CVE-2012-6050 - Configuration vulnerability in Mikrotik Routeros 5.15

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

mikrotik

CWE-16

exploit available

NVD

Published: 2012-11-27

Updated: 2017-08-29

Summary

The winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial of service (CPU consumption), read the router version, and possibly have other impacts via a request to download the router's DLLs or plugins, as demonstrated by roteros.dll.

Vulnerable Configurations

Part	Description	Count
OS	Mikrotik Mikrotik Routeros 5.15	1

Common Weakness Enumeration (CWE)

CWE-16 - Configuration

Exploit-Db

description	Mikrotik Router Denial of Service. CVE-2012-6050. Dos exploit for hardware platform
file	exploits/hardware/dos/18817.py
id	EDB-ID:18817
last seen	2016-02-02
modified	2012-05-01
platform	hardware
port
published	2012-05-01
reporter	PoURaN
source	https://www.exploit-db.com/download/18817/
title	Mikrotik Router Denial of Service
type	dos

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References