Description
The winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial of service (CPU consumption), read the router version, and possibly have other impacts via a request to download the router's DLLs or plugins, as demonstrated by roteros.dll.
Exploits (1)
References (3)
Core 3
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/18817
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/75327
Exploit x_refsource_misc
http://www.133tsec.com/2012/04/30/0day-ddos-mikrotik-server-side-ddos-attack/
Scores
EPSS
0.0862
EPSS Percentile
92.5%
Details
CWE
CWE-16
Status
published
Products (1)
mikrotik/routeros
5.15
Published
Nov 27, 2012
Tracked Since
Feb 18, 2026