CVE-2012-6050

MikroTik RouterOS <= 5.15 - Denial of Service via Winbox DLL Download Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-6050. PoCs published by PoURaN.

AI-analyzed exploit summary This Python script exploits a denial-of-service vulnerability in Mikrotik RouterOS's winbox service by repeatedly requesting parts of a DLL file, causing the service to become unstable and disconnect clients. The exploit can also download DLL files from the router.

Description

The winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial of service (CPU consumption), read the router version, and possibly have other impacts via a request to download the router's DLLs or plugins, as demonstrated by roteros.dll.

Exploits (1)

exploitdb WORKING POC
by PoURaN · pythondoshardware
https://www.exploit-db.com/exploits/18817

This Python script exploits a denial-of-service vulnerability in Mikrotik RouterOS's winbox service by repeatedly requesting parts of a DLL file, causing the service to become unstable and disconnect clients. The exploit can also download DLL files from the router.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Mikrotik RouterOS (versions 2.9.6 to 5.15)
No auth needed
Prerequisites: Winbox service enabled on the target router · Network access to the target router's winbox port (8291)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18817
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/75327

Scores

EPSS 0.0941
EPSS Percentile 94.8%

Details

CWE
CWE-16
Status published
Products (1)
mikrotik/routeros 5.15
Published Nov 27, 2012
Tracked Since Feb 18, 2026