cve/2019/CVE-2019-3978.md

### [CVE-2019-3978](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3978)
![](https://img.shields.io/static/v1?label=Product&message=MikroTik%20RouterOS&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-306&color=brighgreen)

### Description

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below allow remote unauthenticated attackers to trigger DNS queries via port 8291. The queries are sent from the router to a server of the attacker's choice. The DNS responses are cached by the router, potentially resulting in cache poisoning

### POC

#### Reference
- http://packetstormsecurity.com/files/155036/MikroTik-RouterOS-6.45.6-DNS-Cache-Poisoning.html
- https://www.tenable.com/security/research/tra-2019-46

#### Github
- https://github.com/ARPSyndicate/cvemon