CVE-2017-6444

HIGH

MikroTik RouterOS 6.25 - Denial of Service via Unsolicited TCP ACK Packets

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-6444. PoCs published by FarazPajohan.

AI-analyzed exploit summary This exploit targets a denial-of-service vulnerability in MikroTik RouterOS by flooding the device with TCP ACK packets, causing CPU exhaustion. The code constructs raw TCP packets with randomized fields to bypass protections and trigger the DoS condition.

Description

The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service (CPU consumption) by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 100% and the router requires a reboot for normal operation.

Exploits (1)

exploitdb WORKING POC
by FarazPajohan · cdoshardware
https://www.exploit-db.com/exploits/41601

This exploit targets a denial-of-service vulnerability in MikroTik RouterOS by flooding the device with TCP ACK packets, causing CPU exhaustion. The code constructs raw TCP packets with randomized fields to bypass protections and trigger the DoS condition.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: MikroTik RouterOS 6.25 (Hap Lite series)
No auth needed
Prerequisites: Network access to the target device · Raw socket permissions on the attacking machine
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/41601/
Exploit, Third Party Advisory x_refsource_misc
https://cxsecurity.com/issue/WLB-2017030029
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/141449/Mikrotik-Hap-Lite-6.25-Denial-Of-Service.html
Exploit, Third Party Advisory x_refsource_misc
http://www.exploitalert.com/view-details.html?id=26137

Scores

CVSS v3 7.5
EPSS 0.1805
EPSS Percentile 95.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-400
Status published
Products (1)
mikrotik/routeros 6.25
Published Mar 12, 2017
Tracked Since Feb 18, 2026