Geeks for your information News Privacy & Security News v
MikroTik vulnerability climbs up the severity scale, new attack permits root access
MikroTik vulnerability climbs up the severity scale, new attack permits root access
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
08 October 18, 13:42
Quote: Researchers have warned that a known vulnerability in the firmware of MikroTik routers is potentially far more dangerous than previously believed.

The bug in question, CVE-2018-14847, is present in the Winbox administration utility of MikroTik's RouterOS through 6.42 and allows "remote attackers to bypass authentication and read arbitrary files by modifying a request to change one byte related to a Session ID."

While classified as a directory traversal bug of medium severity, researchers from Tenable Research say the vulnerability can be used to remotely execute code due to a new attack method.

Source: https://www.zdnet.com/article/known-mikr...ot-access/
[-] The following 1 user says Thank You to silversurfer for this post:
  â€˘ harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
ScreenToGif 2.43
ScreenToGif 2.43 ...harlan4096 — 07:37
Microsoft Edge 146.0.3856.72
Version 146.0.3856...harlan4096 — 07:35
Brave 1.88.134 (Chromium 146.0.7680.153)
Release v1.88.134 ...harlan4096 — 07:34
Vivaldi 7.9 Build 3970.41
Vivaldi 7.9 Build ...harlan4096 — 07:33
AnyDesk 8.0.1 for Linux
Version 8.0.1 for ...harlan4096 — 07:32

[-]
Birthdays
Today's Birthdays
avatar (38)Charlesfibre
Upcoming Birthdays
avatar (44)gapedDow
avatar (38)snorydar
avatar (46)qaqapeti
avatar (44)battsourIonix
avatar (43)CedricSek
avatar (43)artmaGoork

[-]
Online Staff
There are no staff members currently online.

>