Red Securium

Once again, MikroTik Routers make it into the news. Allegedly, a researcher discovered several vulnerabilities in MikroTik Routers that could result in a complete system compromise. Moreover, he also found a new way to exploit a previously discovered vulnerability through which an attacker could gain root access to the device. Vulnerabilities In RouterOS Used In MikroTik Routers A researcher at Tenable has discovered several vulnerabilities in the Mikrotik Routers. Precisely, he discovered four different security flaws in the RouterOS that could trigger hacking attacks. As discovered by Jacob Baines, the Tenable researcher, the Mikrotik’s operating system RouterOS had around four different security flaws. These include a remote code execution vulnerability (CVE-2018-1156), File upload memory exhaustion flaw (CVE-2018-1157), recursive JSON parsing stack exhaustion (CVE-2018-1158), and www memory corruption (CVE-2018-1159). All these vulnerabilities, despite being different,

Mozilla’s email client Thunderbird exhibited several security flaws that posed a threat to users’ security. As reported, upon discovering these vulnerabilities in Thunderbird,  Mozilla  released patches in version 60.2.1. Critical Vulnerability Discovered In Thunderbird Mozilla has recently found multiple security vulnerabilities of varying severity degrees in its email client Thunderbird. As disclosed in their  security advisory , Mozilla patched seven different vulnerabilities in Thunderbird 60.2.1. This includes a critical security vulnerability (CVE-2018-12376) that could allow an attacker to execute arbitrary codes after gaining remote access to the target system. This vulnerability previously affected the Firefox 62 and Firefox ESR 60.2 browsers. As described regarding this flaw in their advisory, “Mozilla developers and community members […] reported memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruptio