Better do not upgrade for the moment to latest 6.41.x versions, since there are bigger flaws there, than a theoretical SMB security issue (like e.g. DHCP server not working in bridge configurations). 6.40.6 would be a better option.
A proper firewall rule disallowing SMB access from the internet would do a much better job (and if you had SMB or administrative access widely opened to the internet, that's naive, to use a kind word).
Marius, YO2LOJ
On 18.03.2018 07:52, R P wrote:
For you (and me) that use Mikrotik routers For AmprNet (but not only for AMPRNet
Recommended to Upgrade the latest OS Release
Ronen - 4Z4ZQ
https://www.securityweek.com/remotely-exploitable-vulnerability-discovered-m...
Remotely Exploitable Vulnerability Discovered in MikroTik's RouterOS | SecurityWeek.Comhttps://www.securityweek.com/remotely-exploitable-vulnerability-discovered-mikrotiks-routeros?utm_campaign=Feed%3A%2BSecurityweek%2B%28SecurityWeek%2BRSS%2BFeed%29&utm_medium=feed&utm_source=feedburner www.securityweek.com A MikroTik RouterOS SMB buffer overflow vulnerability (CVE-2018-7445) allows a remote attacker with access to the service to gain code execution on the system.