[HamWAN PSDR] Mikrotik exploit

Nigel Vander Houwen nigel at nigelvh.com
Mon Sep 10 21:41:50 PDT 2018


Thanks for the note Robert, unfortunately yes, there are vulns around, so it’s important to keep things updated. In this case for gear specifically on the HamWAN Puget Sound network, we block WinBox protocol at the edges of the network, so internet attacks against this are unlikely, but that’s just a mitigating factor. Please do make sure to keep your modem updated.

Nigel

> On Sep 10, 2018, at 21:37, cq.ve5bob at gmail.com wrote:
> 
> Hi all,
> 
> I am sure this is old news for most but I don't recall seeing it cross this group. Since it has hit mainstream news, here it is.
> 
> https://nvd.nist.gov/vuln/detail/CVE-2018-14847 <https://nvd.nist.gov/vuln/detail/CVE-2018-14847>
> 
> The news says Mikrotik has a patch for it but many haven't applies the patch.
> Apparently the exploit allows bypassing the security so other code can be installed...mostly cryptocurrency mining has been reported.
> 
> Regards,
> Robert VA7MF.
> 
> 
> 
> Sent from my LG Mobile
> _______________________________________________
> PSDR mailing list
> PSDR at hamwan.org
> http://mail.hamwan.net/mailman/listinfo/psdr

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.hamwan.net/pipermail/psdr/attachments/20180910/0d062084/attachment.html>


More information about the PSDR mailing list