CVE-2018-5951
HIGHMikrotik RouterOS - Denial of Service via IPv6 EoIP Packet
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2018-5951. PoCs published by Nat-Lab.
AI-analyzed exploit summary This PoC exploits a denial-of-service vulnerability in MikroTik RouterOS by sending a single-byte packet to an IPv6 address using IP protocol 97, causing the router to reboot. The exploit leverages improper handling of EoIPv6 tunnel ID validation.
Description
An issue was discovered in Mikrotik RouterOS. Crafting a packet that has a size of 1 byte and sending it to an IPv6 address of a RouterOS box with IP Protocol 97 will cause RouterOS to reboot imminently. All versions of RouterOS that supports EoIPv6 are vulnerable to this attack.
Exploits (1)
This PoC exploits a denial-of-service vulnerability in MikroTik RouterOS by sending a single-byte packet to an IPv6 address using IP protocol 97, causing the router to reboot. The exploit leverages improper handling of EoIPv6 tunnel ID validation.
References (1)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H