MikroTik RouterOS Detection (HTTP)

HTTP based detection of MikroTik RouterOS. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

MikroTik RouterOS Detection (FTP)

FTP based detection of MikroTik RouterOS. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113069"...

MikroTik RouterOS WPA2 Key Reinstallation Vulnerabilities - KRACK

WPA2 as used in MikroTik RouterOS is prone to multiple security weaknesses aka Key Reinstallation Attacks KRACK. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

MikroTik RouterOS < 6.39.3 / 6.40.4 / 6.41rc (KRACK)

According to its self-reported version, the remote networking device is running a version of MikroTik 6.9.X prior to 6.39.3, 6.40.x 6.40.4, or 6.41rc. It, therefore, vulnerable to multiple vulnerabilities discovered in the WPA2 handshake protocol. %NASLMINLEVEL 70300 C Tenable Network Security,...

PT-2017-4232 · Mikrotik · Routeros +1

Name of the Vulnerable Software and Affected Versions: Mikrotik RouterOS versions prior to Stable 6.38.5 Mikrotik RouterOS versions prior to Long-term 6.37.5 Description: The issue is related to memory corruption in the Mikrotik RouterOS web server. A remote and unauthenticated user can trigger t...

Mikrotik RouterOS 6.28 Cookie Buffer Overflow

mikrotik RouterOS v6.28 Cookie HTTP request header Buffer Overflow sultan albalawi import socket import sys from time import sleep def myB: print "\x27\x27\x27\x0d\x0a\x20\x20\x20\x20\x20" \ "\x20\x20\x5c\x20\x20\x20\x2d\x20\x20\x2d\x20" \ "\x20\x2d\x20\x3c\x73\x65\x72\x76\x65\x72\x3e" ...

Mikrotik RouterOS 6.39.2 FTP CWD Buffer Overflow

import time,sys import socket from ftplib import FTP mikrotik RouterOS v6.39.2 FTp buffer cwd command sultan albalawi if lensys.argv "' print 'Example: 192.168.1.1 21 admin admin' sys.exit1 def myB: print "\x27\x27\x27\x0d\x0a\x20\x20\x20\x20\x20" \ "\x20\x20\x5c\x20\x20\x20\x2d\x20\x20\x2d\x20" ...

Mikrotik RouterOS 6.28 FTP Buffer Overflow

import time import socket from ftplib import FTP import struct mikrotik RouterOS v6.28 FTp CWD command Buffer Overflow sultan albalawi win7 from subprocess import host='192.168.88.1' port=21 u = ""username p = ""password def myB: myB=...

MikroTik RouterOS Packet Flooding Multiple DoS Vulnerabilities (May 2017)

MikroTik router is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MikroTik RouterOS HTTP Server Arbitrary Write RCE (ChimayRed)

The MikroTik RouterOS software running on the remote host is affected by a flaw in its HTTP web server process due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this, via a specially crafted POST request, to write data to an arbitrary location with...

MikroTik RouterOS 'L2TP' Man-in-the-Middle Attack Vulnerability (Feb 2017)

MikroTik RouterOS is prone to a man in the middle attack vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

MikroTik RouterOS Detection Consolidation

Consolidation of MikroTik RouterOS detections. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MikroTik RouterOS L2TP Client Man-in-the-Middle Attack Vulnerability

MikroTik RouterOS is a routing operating system developed on the Linux kernel. A security vulnerability in the L2TP Client of MikroTik RouterOS allows remote attackers to exploit the vulnerability to gain unauthorized access to an L2TP server via a man-in-the-middle attack...

Code injection

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the-middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

CVE-2017-6297

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the-middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

CVE-2017-6297

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the-middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

CVE-2017-6297

The L2TP Client in MikroTik RouterOS versions 6.83.3 and 6.37.4 does not enable IPsec encryption after a reboot, which allows man-in-the-middle attackers to view transmitted data unencrypted and gain access to networks on the L2TP server by monitoring the packets for the transmitted data and...

CVE-2017-6297

The CVE-2017-6297 entry concerns MikroTik RouterOS L2TP Client in versions 6.83.3 and 6.37.4. The vulnerability arises because IPsec encryption is not enabled after a reboot, enabling man-in-the-middle attackers to view unencrypted data and potentially access networks on the L2TP server by monito...

Mikrotik Router Remote Denial Of Service (CVE-2012-6050)

A vulnerability in the Winbox service in MikroTik RouterOS 5.15 and earlier allows remote attackers to cause a denial of service CPU consumption, read the router version, and possibly have additional impact via a request to download the router's DLLs or plugins...

MikroTik RouterOS Admin Password Change (CVE-2015-2350)

A vulnerability exists in MicroTik RouterOS, allowing an attacker to force an end-user to carry out undesired actions on the web application where the user is currently authenticated...