CVE-2018-7445 - MikroTik RouterOS Stack-Based Buffer Overflow Vulnerability

漏洞名称

MikroTik RouterOS Stack-Based Buffer Overflow Vulnerability

描述

In MikroTik RouterOS, a stack-based buffer overflow occurs when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system.

已知用于勒索软件活动吗？

Unknown

采集行动

Apply updates per vendor instructions.

其他说明

https://www.coresecurity.com/core-labs/advisories/mikrotik-routeros-smb-buffer-overflow#vendor_update, https://mikrotik.com/download

https://nvd.nist.gov/vuln/detail/CVE-2018-7445