Design/Logic Flaw

The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 10...

CVE-2017-6444

The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 10...

CVE-2017-6444

The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service CPU consumption by sending many ACK packets. After the attacker stops the exploit, the CPU usage is 10...

CVE-2017-6444

Affected product: MikroTik RouterOS hAP Lite 6.25. Vulnerability: Unsolicited TCP ACKs on a fast network enable remote attackers to trigger denial of service by driving CPU usage to 100%, requiring a reboot for normal operation. Root cause (as described): No protection mechanism for unsolicited T...

MikroTik Router - ARP Table OverFlow Denial Of Service

/ Exploit Title: MikroTik Router Denial Of Service | ARP Table OverFlow Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Affected Series: Hap Lite Version: 6.25 Tested on: Parrot Security OS Date: 04-3-2017 Category: Network Appliance Vulnerable Part: TCP Stack...

Mikrotik Hap Lite 6.25 Denial Of Service

CVE:2017-6444 Exploit Title: MikroTik Router Denial Of Service | ARP Table OverFlow Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Affected Series: Hap Lite Version: 6.25 Tested on: Parrot Security OS Date: 02-3-2017 Category: Network Appliance Vulnerable Part:...

MikroTik Router Denial Of Service | ARP Table OverFlow Exploit

Exploit for hardware platform in category dos / poc CVE:2017-6444 Exploit Title: MikroTik Router Denial Of Service | ARP Table OverFlow Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Series : Hap Lite Tested on: Parrot Security OS Date: 03-3-2017 Category: Netwo...

Insufficient restrictions on certain MMU update hypercalls

ISSUE DESCRIPTION MMU update operations targeting page tables are intended to be used on PV guests only. The lack of a respective check made it possible for such operations to access certain function pointers which remain NULL when the target guest is using Hardware Assisted Paging HAP. IMPACT...

CVE-2014-5146

Certain MMU virtualization operations in Xen 4.2.x through 4.4.x before the xsa97-hap patch, when using Hardware Assisted Paging HAP, are not preemptible, which allows local HVM guest to cause a denial of service vcpu consumption by invoking these operations, which process every page assigned to ...

CVE-2014-5146

CVE-2014-5146 affects Xen 4.2.x–4.4.x before the xsa97-hap patch. When using Hardware Assisted Paging (HAP), certain MMU virtualization ops are not preemptible, allowing a local HVM guest to trigger a DoS by consuming all vCPUs for pages assigned to the guest. It is described as a separate issue ...

CVE-2011-2519

Xen in the Linux kernel, when running a guest on a host without hardware assisted paging HAP, allows guest users to cause a denial of service invalid pointer dereference and hypervisor crash via the SAHF instruction...

SuSE 11.2 Security Update : Xen (SAT Patch Number 7492)

XEN has been updated to fix various bugs and security issues : - XSA 36 To avoid an erratum in early hardware, the Xen AMD IOMMU code by default choose to use a single interrupt remapping table for the whole system. This sharing implied that any guest with a passed through PCI device that is bus...