Skip to main content

Posts

Showing posts with the label MikroTik

Multiple Vulnerabilities Dicovered In RouterOS That Affected MikroTik Routers

Once again, MikroTik Routers make it into the news. Allegedly, a researcher discovered several vulnerabilities in MikroTik Routers that could result in a complete system compromise. Moreover, he also found a new way to exploit a previously discovered vulnerability through which an attacker could gain root access to the device. Vulnerabilities In RouterOS Used In MikroTik Routers A researcher at Tenable has discovered several vulnerabilities in the Mikrotik Routers. Precisely, he discovered four different security flaws in the RouterOS that could trigger hacking attacks. As discovered by Jacob Baines, the Tenable researcher, the Mikrotik’s operating system RouterOS had around four different security flaws. These include a remote code execution vulnerability (CVE-2018-1156), File upload memory exhaustion flaw (CVE-2018-1157), recursive JSON parsing stack exhaustion (CVE-2018-1158), and www memory corruption (CVE-2018-1159). All these vulnerabilities, despite being different,